Stack Overflow
Stack Overflow

Questions tagged [attestations]

15 questions
3
votes
0 answers

Requests limits on Google Play Integrity service linked via project from Google Cloud

In our project we're using safetynet for attestation, but we need to migrate project into google play integrity API because safetynet is deprecated. We're not using google play to distribute our app, so I need to link our app with project on google…
wacsza
  • 31
  • 1
3
votes
2 answers

WebAuthn authenticator attestation response id and rawId

I would like to ask a question regarding id and rawId. When implementing webauthn, in the authenticator attestation response, I see that we have both id and rawId . Reading the spec (https://www.w3.org/TR/webauthn-1/#dom-publickeycredential-rawid) ,…
truongnm
  • 2,311
  • 2
  • 31
  • 48
2
votes
1 answer

Windows MS signed filter driver doesn't load on Win 7 x64 after updating driver to build with VS2019 / WDK 22000

I recently took on a task to update our filter driver from building with Visual Studio 2015 -> 2019. I also moved to the latest SDK + WDK 22000 (Which is the new Windows 11 one). Everything seemed to work except that on Win 7 x64 (with secure boot)…
Benj
  • 31,668
  • 17
  • 78
  • 127
1
vote
1 answer

How to take the hash of ELF binary in linux kernel?

I am implementing binary attestation from inside the kernel. I am reading the file using the kernel_read_from_file() function. The function definition is as follows: int kernel_read_file_from_path(const char *path, void **buf, loff_t *size, …
Eikansh Gupta
  • 13
  • 4
1
vote
1 answer

How to extract certificates from app attestation object using php?

I tried to set up app attestation between my app and php but I rarely find any other source of explaination than Apple's own documentation, which let me stuck quite at an early state. So far I got the following steps: On the client side, following…
Leo
  • 1,508
  • 13
  • 27
0
votes
0 answers

Field inclusion in an Attestation Form

All, I'm very new to this, so if I'm blatantly missing something obvious, my apologies. A request from my manager is to include relevant Entities to a 'header' section of an Attestation form. These would include the Control Objective Name, the…
larry
  • 1
0
votes
0 answers

How to trigger privacy impact assessment if processing_activity.special_category_info_available == true in ServiceNow

In our project, entities are not procesisng activities yet, thus we need to do a screening assessment first to get a more complete register of processing activities. I am very new using ServiceNow but have some experience wriitng js. We want to…
Mouse
  • 1
0
votes
0 answers

Autopilot Pre-Provision TPM error, why won't these devices complete

I have 20 HP Elitebook 640 G9's, I'm putting them through the autopilot pre-provisioning process, 17 have gone though the process with no issues. 3 devices are failing the process right at the start "Securing your hardware" I get the error…
UnknownDonut
  • 15
  • 4
0
votes
0 answers

I can't create an Attestation Key (AK) using as its parent an existing Endorsement Key (EK)

I'm using TSS.MSR library for C++ (TSS.CPP). My goal is to generate a new AK from an existing EK that I'm reading using tpm.ReadPublic() command. If I create an EK by myself using tpm.CreatePrimary(), without any auth or policy, I'm able to create…
Gustavo Monteiro
  • 1
0
votes
0 answers

Android 11, CN Android Keystore Key invalid - how is this possible?

We have implemented Android key attestation https://developer.android.com/training/articles/security-key-attestation We have React Native app and we asking key chain from device. Use a KeyStore object's "getCertificateChain() method to get a…
Priit Serk
  • 3
  • 3
0
votes
0 answers

TPM2.0 failed replay of PCR0 during boot attestation

I'm trying to do boot attestation over a couple of devices and I get that the replay of the PCR0 against the eventlog failed. Is there a way to debug where the issue is?
Gaston539
  • 1
  • 2
0
votes
0 answers

Remote Attestation based on Privacy CA and TPM

I'm trying to understand the Remote Attestation Protocol based on Privacy CA and at this moment I have several questions: Who does initiate the attestation, Verifier or Attester? AIK (Attestation Identity Key) is an alias for EK (Endorsement Key),…
k1r1t0
  • 465
  • 2
  • 11
0
votes
1 answer

Python WebAuthn: Unable to verify attestation statement format

I have implemented some sort of password-less authentication using DUO lab's webauthn using Django. However, I keep getting this error: Unable to verify attestation statement format.. when authenticating on my Android phone (at least for now). How…
Sirjon
  • 175
  • 1
  • 8
0
votes
1 answer

Is android safety net nonce equivalent to web authnn's challenge?

How similar is android SafetyNet to Web Authnn? Is the challenge passed to the WebAutnn's authenticator to generate an attestation object equivalent to the nonce that is passed to Android SafetyNet? Can I use a nonce with WebAuthnn as the challenge?
Lucas Vieira
  • 1
  • 2
0
votes
1 answer

What are the true purposes for a managed private blockchain service such as Azure Blockchain Service in terms of data Interoperability and provenance

I ask this question because I want to facilitate a workflow that utilizes a managed blockchain service such as the Azure or AWS blockchain service. Is the true purpose attestations, provenance and interoperability? In that aspect, aren't regular…
Christian Matthew
  • 4,014
  • 4
  • 33
  • 43