TLS certificate sizes in Geminispace

jzs jzs at sketchground.dk
Fri Jun 26 16:40:04 BST 2020

Previous message (by thread): TLS certificate sizes in Geminispace
Next message (by thread): TLS certificate sizes in Geminispace
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi there,

I am the author of cozylabs.eu.

> However, the smallest certificate I have encountered belongs to
> cozylabs.eu. It is 273 bytes, i.e. 20% of the average! Or, about 1 KiB
> smaller than average. That's 1KiB less network traffic for each
> request to that server compare to a typical server.
>
> cozylabs.eu achieves this feat with a single self-signed ED25519
> certificate. For folks who want to ditch the CA system and embrace
> TOFU, this is clearly the way to do it. I will migrate
> gemini.circumlunar.space to this style of certificate in the near
> future.
>
> Cheers,
> Solderpunk


The code that i use to generate my certificate is as follows:
https://git.sr.ht/~jzs/cozylabs.eu-gemini/tree/master/server.go#L263

It might serve as an inspiration to making a generic standalone certificate
generator for those interested.

Kind regards,
Jens.

Previous message (by thread): TLS certificate sizes in Geminispace
Next message (by thread): TLS certificate sizes in Geminispace
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list