using uwp for tpm key attestation csr
Clash Royale CLAN TAG#URR8PPP
using uwp for tpm key attestation csr
I am trying to generate any form of tpm attestation data to go along with the CSR that I generate using uwp api.
This api has AttestationCredentialCertificate
that is likely used for it, however all I can do is generating the standard CSR, but it is not clear what to set to this field.
AttestationCredentialCertificate
I know the key is created on the virtual smartcard backed by TPM, it works fine etc, but I want to generate a proof that can be used to remotely verify, that the key was generated on tpm. I do not want to use Windows Server CA or domain, the validation will be done based should be based on EKcert root of trust of known TPM manufacturer, but I have no idea how to do it. Any example of doing so using cng or bcrypt would also be useful.
RequestAttestedVirtualSmartCardCreationAsync
stackoverflow has failed me, so I've asked similar question in msdn forum and i am waiting for answer there. See social.msdn.microsoft.com/Forums/windowsapps/en-US/…
– david Sanda
Aug 15 at 16:03
By clicking "Post Your Answer", you acknowledge that you have read our updated terms of service, privacy policy and cookie policy, and that your continued use of the website is subject to these policies.
RequestAttestedVirtualSmartCardCreationAsync
is another function, that should be helpful with it, but calling it throws exception: Not found (404). (Exception from HRESULT: 0x80190194) after asking for PIN.– david Sanda
Aug 10 at 16:46