Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/vvb2060/keyattestation

Last synced: 7 days ago
JSON representation

Host: GitHub
URL: https://github.com/vvb2060/keyattestation
Owner: vvb2060
Created: 2020-03-12T06:57:04.000Z (over 4 years ago)
Default Branch: master
Last Pushed: 2024-06-26T09:52:12.000Z (5 months ago)
Last Synced: 2024-10-14T20:56:48.662Z (25 days ago)
Language: Java
Size: 1.07 MB
Stars: 719
Watchers: 17
Forks: 86
Open Issues: 4
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

        Android Key Attestation Test App

==============================

This app supports generating, saving, loading, parsing and verifying Android [key and ID attestation](https://source.android.com/docs/security/features/keystore/attestation) data.

The app is used for self-testing, so it has no network permission. The certificate revocation data is embedded in the apk and will not be updated online. If the system is compromised, parsing and verifying is not safe, you should save the data to a file and then load the file on another device to verify it.

This app also supports loading attestation data generated by other software, and the supported storage format is [PkiPath and PKCS7](https://docs.oracle.com/en/java/javase/17/docs/specs/security/standard-names.html#certpath-encodings).

Useful links

---

[Official documentation](https://developer.android.com/privacy-and-security/security-key-attestation)

[Official implementation](https://cs.android.com/android/platform/superproject/main/+/main:frameworks/base/services/core/java/com/android/server/security/AttestationVerificationPeerDeviceVerifier.java)

[Authorization tags](https://cs.android.com/android/platform/superproject/+/main:hardware/interfaces/security/keymint/aidl/android/hardware/security/keymint/Tag.aidl)

[Key attestation extension data schema](https://cs.android.com/android/platform/superproject/+/main:hardware/interfaces/security/keymint/aidl/android/hardware/security/keymint/KeyCreationResult.aidl)

[RKP documentation](https://cs.android.com/android/platform/superproject/+/main:hardware/interfaces/security/rkp/README.md)

[Legacy keymaster tags](https://cs.android.com/android/platform/superproject/+/main:hardware/interfaces/keymaster/3.0/types.hal)

License

-------

Licensed under the Apache License, Version 2.0 (the "License");

you may not use this file except in compliance with the License.

You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software

distributed under the License is distributed on an "AS IS" BASIS,

WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

See the License for the specific language governing permissions and

limitations under the License.