<?xml version="1.0" encoding="utf-8"?>
<feed xmlns="http://www.w3.org/2005/Atom">
	<title type="html"><![CDATA[wolfSSL - Embedded SSL Library — XMSS-signed certificates]]></title>
	<link rel="self" href="https://www.wolfssl.com/forums/feed-atom-topic2304.xml" />
	<updated>2025-04-14T14:58:21Z</updated>
	<generator>PunBB</generator>
	<id>https://www.wolfssl.com/forums/topic2304-xmsssigned-certificates.html</id>
		<entry>
			<title type="html"><![CDATA[Re: XMSS-signed certificates]]></title>
			<link rel="alternate" href="https://www.wolfssl.com/forums/post8307.html#p8307" />
			<content type="html"><![CDATA[<p>Hi Sheondael, </p><p>My name is Anthony and I am a member of the wolfSSL team.&nbsp; The wolfssl library has never supported XMSS in certificates.&nbsp; The reason is because the use case for certificates would be for network protocols and XMSS is a stateful hash-based signature scheme.&nbsp; The state makes it inappropriate for usage in network protocols.&nbsp; </p><p>Where it is appropriate is in code and firmware signing.&nbsp; As such we use it in our wolfBoot product.&nbsp; In that case, no certificate is required. </p><p>That said, can you let us know your use case for XMSS in certificates?&nbsp; Here at wolfSSL, we are always interested in how people are using our code and I would love to understand your need for XMSS in certificates.&nbsp; Also, can you let us know your geographical location and whether this is out of professional, personal or academic interest? </p><p>Warm&nbsp; regards, Anthony</p>]]></content>
			<author>
				<name><![CDATA[anthony]]></name>
				<uri>https://www.wolfssl.com/forums/user4091.html</uri>
			</author>
			<updated>2025-04-14T14:58:21Z</updated>
			<id>https://www.wolfssl.com/forums/post8307.html#p8307</id>
		</entry>
		<entry>
			<title type="html"><![CDATA[XMSS-signed certificates]]></title>
			<link rel="alternate" href="https://www.wolfssl.com/forums/post8306.html#p8306" />
			<content type="html"><![CDATA[<p>Hi everyone,</p><p>I&#039;m having trouble creating and signing certificates using XMSS keys.<br />I checked the source code of asn.c (<a href="https://github.com/wolfSSL/wolfssl/blob/master/wolfcrypt/src/asn.c">https://github.com/wolfSSL/wolfssl/blob … /src/asn.c</a>) and it seems like the MakeAnyCert function and therefore the wc_MakeCert_ex function don&#039;t support XMSS keys. I saw an older forked version where XMSS keys were accepted, was the support dropped? Is there any other way of creating and signing certificates using XMSS?</p><p>Best regards and thanks in advance!</p>]]></content>
			<author>
				<name><![CDATA[sheondael]]></name>
				<uri>https://www.wolfssl.com/forums/user6624.html</uri>
			</author>
			<updated>2025-04-14T14:02:56Z</updated>
			<id>https://www.wolfssl.com/forums/post8306.html#p8306</id>
		</entry>
</feed>
