[Openid-specs-ab] Issue #1461: Supporting hardware attestations in the credential request when cryptographic binding is being used (openid/connect)
Tobias Looker
issues-reply at bitbucket.org
Fri Mar 11 02:02:39 UTC 2022
New issue 1461: Supporting hardware attestations in the credential request when cryptographic binding is being used
https://bitbucket.org/openid/connect/issues/1461/supporting-hardware-attestations-in-the
Tobias Looker:
Some credential types that are issued by providers that are making use of cryptographic holder binding MAY want to understand the nature under which the keys are secured by the holder which could involve the usage of an HSM or secure element to meet these assurances. To facilitate this some HSM’s or secure elements support schemes whereby an attestation can be generated \(either directly or indirectly\) and shared to verify a particular key is hardware backed. We should consider how we can support supplying this information in a credential request so the issuer can verify it when needed.
More information about the Openid-specs-ab
mailing list