supreme-common/at.asitplus.attestation.supreme

Package-level declarations

Types

@Serializable

Represents a challenge for attestation processes, encapsulating necessary details such as the nonce, validity, and additional constraints or metadata for the attestation proof.

AttestationResponse

@Serializable

sealed class AttestationResponse

BitLengthSerializer

object BitLengthSerializer : KSerializer<BitLength>

Constrained

typealias Constrained = Any?

Constrained value type for AttestationChallenge.additionalPayload.

ConstrainedMapSerializer

object ConstrainedMapSerializer : KSerializer<Map<String, Constrained>>

Format-agnostic serializer for Map<String, Constrained>.

DigestSerializer

object DigestSerializer : KSerializer<Digest>

DurationWholeSecondsSerializer

object DurationWholeSecondsSerializer : KSerializer<Duration>

ECCurveSerializer

object ECCurveSerializer : KSerializer<ECCurve>

InstantLongSerializer

class InstantLongSerializer : KSerializer<Instant>

KeyConstraints

@Serializable

data class KeyConstraints(val algorithmParameters: KeyConstraints.AlgorithmParameters, val keyProtection: KeyConstraints.KeyProtection? = null)

Constraints on the key to be created on the client. If properly set, allows for ridiculously hands-free key and attestation statement creation

WardenDefaults

object WardenDefaults

Properties

challenge

val TbsCertificationRequest.~~challenge~~: KmmResult<ByteArray>

deviceName

val Pkcs10CertificationRequest.~~deviceName~~: String?

val TbsCertificationRequest.~~deviceName~~: String?

nonce

val TbsCertificationRequest.nonce: KmmResult<ByteArray>

Tries to extract the nonce from a TBS CSR's subject name, given it is encoded into an RDN containing a KnownOIDs.serialNumber

Functions

attestationStatementForChallenge

fun TbsCertificationRequest.attestationStatementForChallenge(challenge: AttestationChallenge): KmmResult<Attestation>

Tries to extract an attestation statement from a TBS CSR based on the proofOID specified in challenge

attestationStatementForOid

fun TbsCertificationRequest.attestationStatementForOid(oid: ObjectIdentifier): KmmResult<Attestation>

Tries to extract an attestation statement from a TBS CSR, given it is present as an attribute with oid

deviceNameForChallenge

fun Pkcs10CertificationRequest.deviceNameForChallenge(challenge: AttestationChallenge): String?

fun TbsCertificationRequest.deviceNameForChallenge(challenge: AttestationChallenge): String?

Tries to extract a device name from a TBS CSR if genericDeviceNameOID is specified in challenge

deviceNameForOid

fun Pkcs10CertificationRequest.deviceNameForOid(oid: ObjectIdentifier): String?

fun TbsCertificationRequest.deviceNameForOid(oid: ObjectIdentifier): String?

Tries to extract a device name from a TBS CSR, given it is present as an attribute with oid