Interface FidoUafAttestationInformation.StrictMode
- All Superinterfaces:
FidoUafAttestationInformation
- Enclosing interface:
- FidoUafAttestationInformation
public static interface FidoUafAttestationInformation.StrictMode
extends FidoUafAttestationInformation
The device supports the
default and strict full basic attestation modes as described in the
nevisFIDO documentation.
It also supports surrogate basic.
However, since it does not have a StrongBox that the SDK can use to store the FIDO UAF credentials, the
strict-strongbox mode is not supported.
If the device supports this mode, then:
- The FIDO UAF keys will be stored in a Trusted Execution Environment (TEE), and thus
FidoUafAttestationInformation.keymasterSecurityLevel()will beSecurityLevel.TRUSTED_ENVIRONMENT. - The certificate chain was successfully validated, and thus
FidoUafAttestationInformation.certificateChainValidationResult()returnsCertificateChainValidationResult.SUCCESS. - The value of
FidoUafAttestationInformation.keymasterVersion()is 2 or higher. - The verified boot state is valid (
FidoUafAttestationInformation.isVerifiedBootStateValid()returnstrue). - The device bootloader is locked (
FidoUafAttestationInformation.isDeviceBootloaderLocked()returnstrue).
-
Nested Class Summary
Nested classes/interfaces inherited from interface ch.nevis.mobile.sdk.api.devicecapabilities.FidoUafAttestationInformation
FidoUafAttestationInformation.OnlyDefaultMode, FidoUafAttestationInformation.OnlySurrogateBasicSupported, FidoUafAttestationInformation.StrictMode, FidoUafAttestationInformation.StrictStrongBoxMode -
Method Summary
Methods inherited from interface ch.nevis.mobile.sdk.api.devicecapabilities.FidoUafAttestationInformation
certificateChainValidationResult, isDeviceBootloaderLocked, isVerifiedBootStateValid, keymasterSecurityLevel, keymasterVersion