References

Under Construction

These references need to be vetted, expanded, and consolidated with the rest of the documentation.

• Android Key Attestation (Developer Guide): Verify Hardware‑Backed Key Pairs with Key Attestation
• Android Key and ID Attestation (AOSP Specification and Schema): Key and ID Attestation
• Android Keystore and StrongBox Overview (Developer Guide): Security and StrongBox
• Android Platform Security Model (Academic Paper): Mayrhofer et al., “Android Platform Security Model”
• Apple Device Integrity Overview (DeviceCheck / App Attest): Service Overview
• Apple Server Validation Guide (DeviceCheck / App Attest): Validating Apps That Connect to Your Server
• Apple Attestation Object Validation (App Attest Format): Attestation Object Validation Guide
• Apple App Attest Setup and Requirements: Preparing to Use App Attest
• WARDEN (Legacy Server‑Side Verifier for Mobile Attestation): Repository • Documentation
• WARDEN‑roboto (Android Attestation Utilities and Parsers): Repository
• Signum (Kotlin Multiplatform Crypto/PKI Toolkit): Documentation
  • Supreme Module
• Android Attestation Libraries (Google):
  • google/android‑key‑attestation
  • android/keyattestation
• iOS App Attest Helper Library (Community): veehaitch/devicecheck-appattest
• Android Keystore2 Stability Fix (Post‑Android 16): Binder Fix — Commit b0be7ed…
• The Sybil Attack (Foundational Concept, P2P and Identity Fraud): John R. Douceur, IPTPS 2002
• Digitales Amt Repackaging: eGovPatchesAT/id-austria