Hi, There is a draft RFC which proposes to add the capability to convey private key attestation to an enrollment server:
https://www.ietf.org/archive/id/draft-ietf-lamps-key-attestation-ext-00.html This covers all protocols and all attestation sources. I have been working with Android KeyStore and KeyChain lately and this certainly seems possible on the client end. I haven't looked at the other draft(s) mentioned in the above RFC, or for any approved standards, but I hope this is enough to start a conversation. Regards, Jeremy _______________________________________________ OpenXPKI-users mailing list OpenXPKI-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openxpki-users
