Skip to content

Commit

Permalink
Merge pull request #1093 from herrjemand/patch-3
Browse files Browse the repository at this point in the history 
In safetynet attestation "nonce" is base64, not base64url
  • Loading branch information
@jcjones
jcjones authored Jan 9, 2019
2 parents c3ac19b + 7b487ff commit ad9bd47
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion index.bs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4052,7 +4052,7 @@ even if the SafetyNet API is also present.
- Verify that |attStmt| is valid CBOR conforming to the syntax defined above and perform CBOR decoding on it to extract the
contained fields.
- Verify that |response| is a valid SafetyNet response of version |ver|.
- Verify that the nonce in the |response| is identical to the Base64url encoding of the SHA-256 hash of the concatenation of |authenticatorData| and |clientDataHash|.
- Verify that the nonce in the |response| is identical to the Base64 encoding of the SHA-256 hash of the concatenation of |authenticatorData| and |clientDataHash|.
- Let |attestationCert| be the [=attestation certificate=].
- Verify that |attestationCert| is issued to the hostname "attest.android.com" (see
[SafetyNet online documentation](https://developer.android.com/training/safetynet/index.html#compat-check-response)).
Expand Down

0 comments on commit ad9bd47

Please sign in to comment.