Questions tagged [key-attestation]
5 questions
7
votes
1 answer
Using the private key generated by DCAppAttestService
Apple released a way to attest generated key pairs on the iOS 14 beta, named Device Check App Attestation Service (DCAppAttestService).
I've already successfully generated a key pair like it is documented by…
Shibo
- 71
- 3
1
vote
0 answers
Did someone managed to use the Android ID attestation
I am testing the android Key & Id attestation on several devices (phones & latest chromecast) with that sample code : https://github.com/vvb2060/KeyAttestation.
While the Key attestation works (generating a pair of key, getting the attestation and…
kode48
- 11
- 3
1
vote
0 answers
iOS - Limitations of DCAppAttestService for generating attestation object
I was checking out the documentation for attestKey(_:clientDataHash:completionHandler:) method. The general idea is for our app to use these measures to assert its legitimacy with any server requests for sensitive or premium content. How often can I…
DesperateLearner
- 1,115
- 3
- 19
- 45
0
votes
0 answers
I can't create an Attestation Key (AK) using as its parent an existing Endorsement Key (EK)
I'm using TSS.MSR library for C++ (TSS.CPP). My goal is to generate a new AK from an existing EK that I'm reading using tpm.ReadPublic() command.
If I create an EK by myself using tpm.CreatePrimary(), without any auth or policy, I'm able to create…
0
votes
1 answer
Android KeyGenParameterSpec.Builder ignoring setCertificateNotBefore and setCertificateNotAfter when not in Secure Hadware
I've created the following method that creates a KeyPair and logs the Certificate details:
@RequiresApi(api = Build.VERSION_CODES.N)
public void createRSAKeyPairtWithChallenge(final String alias, final String attestationChallenge) throws…
Facundo Larrosa
- 3,349
- 2
- 14
- 22