You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
There is no real reason for splitting the add and sign operations (and therefore for the evidence object to exist as a temporary state holder): the two steps can be performed atomically by a standalone function like this:
// Sign returns the signed CCA collection in CBOR formatfuncSign(
platformClaims psatoken.IClaims,
IClaimsrealmClaims,
cose.SignerIAK,
cose.SignerRAK,
) ([]byte, error)
Note: Doing so also makes it easy to set the realm's public key claim as well as the platform's nonce from the supplied RAK, thus avoiding
any potential intra-collection mismatch
the user to compute the (very) raw public key from the signer
The text was updated successfully, but these errors were encountered:
The signing path is currently needlessly complex and also, as a consequence, more error prone.
The user has to:
(note: in #11 we merged 2. and 3. together)
There is no real reason for splitting the add and sign operations (and therefore for the evidence object to exist as a temporary state holder): the two steps can be performed atomically by a standalone function like this:
Note: Doing so also makes it easy to set the realm's public key claim as well as the platform's nonce from the supplied RAK, thus avoiding
The text was updated successfully, but these errors were encountered: