I'm evaluating the SPWF01SA for an industrial application especially with regard to its TLS capabilities.
Unfortunately my knowledge of TLS especially in an embedded setting is limited, and AN4683 neglects to mention how the SPWF01xx module handles a few key aspects of TLS which I think are important to understand. Specifically,
Is there any check for revoked certificates?
AN4683 mentions the server certificate is verified, but how are certificate chains processed? My understanding is that every certificate in the chain should be verified. Does the SPWF01xx do this when provided the top-most root CA certificate, but is connecting to a server several certificates down the chain?
Are there any other drawbacks or
considerations worth noting?