supreme-verifier/at.asitplus.attestation.supreme/SupremeConfiguration

SupremeConfiguration

@Serializable

data class SupremeConfiguration : AttestationConfiguration(source)

Integrated attestation configuration for the Supreme attestation verifier

This configuration deals with two aspects of integrated attestation:

Configuring attestation policies for Android and iOS.
Defining object identifiers and key constraints for fully integrated attestation.

To add custom Android revocation checkers, see AndroidRevocationList.loaderRegistry. To add custom time sources / clocks, see SupremeConfiguration.Clock.registry

Constructors

SupremeConfiguration

constructor(android: AndroidAttestationConfiguration, ios: IosAttestationConfiguration, clock: SupremeConfiguration.Clock = SupremeConfiguration.Clock.System, verificationTimeOffset: Duration = Makoto.DEFAULT_TIME_OFFSET, attestationProofOID: ObjectIdentifier = WardenDefaults.OIDs.ATTESTATION_PROOF, genericDeviceNameOID: ObjectIdentifier? = WardenDefaults.OIDs.DEVICE_NAME, defaultKeyConstraints: KeyConstraints? = WardenDefaults.KeyConstraints.p256Signer)

constructor(ios: IosAttestationConfiguration, clock: SupremeConfiguration.Clock = SupremeConfiguration.Clock.System, verificationTimeOffset: Duration = Makoto.DEFAULT_TIME_OFFSET, attestationProofOID: ObjectIdentifier = WardenDefaults.OIDs.ATTESTATION_PROOF, genericDeviceNameOID: ObjectIdentifier? = WardenDefaults.OIDs.DEVICE_NAME, defaultKeyConstraints: KeyConstraints? = WardenDefaults.KeyConstraints.p256Signer)

iOS-Only configuration

constructor(android: AndroidAttestationConfiguration, clock: SupremeConfiguration.Clock = SupremeConfiguration.Clock.System, verificationTimeOffset: Duration = Makoto.DEFAULT_TIME_OFFSET, attestationProofOID: ObjectIdentifier = WardenDefaults.OIDs.ATTESTATION_PROOF, genericDeviceNameOID: ObjectIdentifier? = WardenDefaults.OIDs.DEVICE_NAME, defaultKeyConstraints: KeyConstraints? = WardenDefaults.KeyConstraints.p256Signer)

Android-Only configuration