KeystoreAttestationProvider

DeviceAttestationProvider implementation using Android Keystore.

Creates an ECDSA P-256 signing key with key attestation. The key is hardware-backed when the device supports it.

Constructors

constructor(context: Context, keyAlias: String = "kioskops_audit_signing")

Check if this provider uses hardware-backed keys.

Get the serialized attestation blob for storage.

Get the attestation certificate chain.

Parse an attestation blob back into a certificate chain.

open override fun signAuditEntry(payload: String): String?

Sign an audit entry payload.

open override fun verifySignature(payload: String, signature: String): Boolean

Verify a signature over an audit entry.