Attestation for Windows Hello not working

[restena-sw]

Finally transcribing a personal mail from Jan 2023 into an issue for visibility:

While Windows Hello's (RSA) registration works when attestation is off, it fails when attestation is requested.

That is because attestation uses the TCG Framework, whose attestation response has an opaque binary structure that is not easy to understand nor parse.

Attestation support during Windows Hello credential registration is considered a feature request.

[restena-sw]

see branch tpm_format for a mostly complete parsing of the TCG message format; some bits still missing