The IESG has approved the following document:
- 'ACME Integrations for Device Certificate Enrollment'
(draft-ietf-acme-integrations-17.txt) as Proposed Standard
This document is the product of the Automated Certificate Management
Environment Working Group.
The IESG contact persons are Paul Wout
“Fixed length fields such as found in ECDSA keys should be their natural length
and
leading zero octets should not be stripped.”
I would consider strengthening this to say MUST/MUST NOT instead of “should” to
avoid any ambiguity that there is no allowance for stripping leading zero
octets.
Yeah, both of these clarifications (the existing one about additional
prepended zero octets, and the new one about leading zeros) are explicitly
laid out in RFC 7518:
> Section 3.4 Digital Signature with ECDSA
> ...
> The octet sequence representations MUST NOT be shortened to omit any
leading zer