multipaz/org.multipaz.certext/CloudKeyAttestation

CloudKeyAttestation

data class CloudKeyAttestation(val challenge: ByteString, val passphrase: Boolean, val userAuthentication: Set<CloudUserAuthType>)

A key attestation for a key that exists in org.multipaz.securearea.cloud.CloudSecureArea which can be included in MultipazExtension in the certificate for the key being attested to.

The CDDL is defined as:

CloudKeyAttestation = {
  "challenge" : bstr,
  "passphrase": bool,
  "userAuthentication: CloudUserAuthentication
}

; The following values are defined for the kind of user authentication required.
;
;  0: No user authentication required for using the key
;  1: Authentication is required for use of the key, only PIN/Passcode can be used.
;  2: Authentication is required for use of the key, only biometrics can be used.
;  3: Authentication is required for use of the key, either PIN/Passcode or biometrics can be used.
;
CloudUserAuthentication = uint
Content copied to clipboard

This map may be extended in the future with additional fields.

Constructors

Link copied to clipboard
constructor(challenge: ByteString, passphrase: Boolean, userAuthentication: Set<CloudUserAuthType>)

Types

Link copied to clipboard
object Companion

Properties

Link copied to clipboard
val challenge: ByteString

the challenge, for freshness.

Link copied to clipboard
val passphrase: Boolean

whether a passphrase is required to use the key.

Link copied to clipboard
val userAuthentication: Set<CloudUserAuthType>

the allowed ways to authenticate.

Functions

Link copied to clipboard