kiosk-ops-sdk/com.sarastarquant.kioskops.sdk.audit/DeviceAttestationProvider

DeviceAttestationProvider

interface DeviceAttestationProvider

Interface for signing audit entries with device attestation.

Implementations should use hardware-backed keys when available to provide the strongest security guarantees.

The signature proves:

  1. The audit entry was created on a specific device

  2. The device has hardware-backed key protection

  3. The entry hasn't been modified since signing

Inheritors

Properties

Link copied to clipboard
abstract val isHardwareBacked: Boolean

Check if this provider uses hardware-backed keys.

Functions

Link copied to clipboard
abstract fun getAttestationBlob(): ByteArray?

Get the serialized attestation blob for storage.

Link copied to clipboard
abstract fun getAttestationChain(): List<X509Certificate>?

Get the attestation certificate chain.

Link copied to clipboard
abstract fun signAuditEntry(payload: String): String?

Sign an audit entry payload.

Link copied to clipboard
abstract fun verifySignature(payload: String, signature: String): Boolean

Verify a signature over an audit entry.

Generated by Dokka
© 2026 Copyright