android-key-attestation
android-key-attestation copied to clipboard
google
Android Key Attestation validation library
The AttestationApplicationId class contains two sets, which already convey presence. This change makes the Java API cleaner at the expense of the marshalling code being marginally more complex.
From a comment on a pull request: I don't seem to have the ability to create issues in this repository so am commenting here: Do you mind also publishing this...
a validator builder to add multiple validation rules. includes an initial rule for checking expiration
Also, tighten up the required certificate chain structure, to specify that the leaf certificate must be an attestation certificate, and that any attestation certificates after the leaf must be for...
Do we need to consider key rotation for this [key](https://github.com/google/android-key-attestation/blob/e3a09702acdc332ef5a6496c5b78a2ca6d2713f8/server/src/main/java/com/google/android/attestation/Constants.java#L25), should we just hardcode the key in our implementation? Is there a way to retrieve the public key through a...
Some certificates cause the library to exit with a NullPointerException, in our case when `ASN1Sequence.fromByteArray(attestationApplicationId.getOctets());` returned null. We need to make sure that these cases don't break the parsing completely....
