|
|
|
|
|
|
by woodruffw
1030 days ago
|
|
|
ASN.1 isn’t an encoding; DER is. The problem with LDAP, etc. is that they all permit BER, which is a looser superset of DER. It includes (among other things) the ability to represent indefinite-length fields, which are the single biggest source of exploitable bugs in a typical application of ASN.1. Without that, the exploitable surface of DER is much smaller (and especially when implemented in a memory-safe language). |
|
|