If you’re part of the Web PKI community and haven’t heard of Merkle Tree Certificates then you must have been hiding under a rock for the past year! These are the new format of certificates that are being pushed by Google and Cloudflare to solve the issue of large public keys and signatures in ML-DSA certificates.
They are currently officially specified in this IETF Draft: https://datatracker.ietf.org/doc/draft-ietf-plants-merkle-tree-certs/
Are you using wolfSSL to access web resources? Will you need interoperability with the web PKI system that is going to roll out the MTC format? Let us know! We need to properly prioritize this work to make sure we are serving our customers.
Rest assured, as with TLS 1.3 and DTLS 1.3, wolfSSL will stick to an aggressive timeline and be the first one with a usable, efficient, small and supported implementation of MTC. Let us know if you’d like to be on our list of Early Access Beta testers!
If you have questions about any of the above, please contact us at facts@wolfssl.com or call us at +1 425 245 8247.
Download wolfSSL Now