I know TLS normally uses a x.509 certificate. But is it possible to use a non-x.509 cert to do TLS if both the server and client understand the format of that certificates?
1 Answer
Yes, you can.
The server_certificate_type and client_certificate_type extensions may be used to negotiate the usage of alternative certificate types. See the TLS Certificate Type registry for possible values. Values in the range 224-255 are reserved for private use as per RFC7250.
