attestationObject property of the
AuthenticatorAttestationResponse interface returns an
ArrayBuffer containing the new public key, as well as signature over the
attestationObject with a private key that is stored in the
authenticator when it is manufactured.
As part of the
CredentialsContainer.create() call, an authenticator will
create a new keypair as well as an
attestationObject for that keypair. The public key
that corresponds to the private key that has created the attestation signature is well
known; however, there are various well known attestation public key chains for different
ecosystems (for example, Android or TPM attestations).
After decoding the CBOR encoded
The Authenticator data for the operation. Note that in
AuthenticatorAssertionResponse.authenticatorData) while in
authenticatorDatais a property in a CBOR map.
AuthenticatorAssertionResponse.authenticatorDatafield is used by both
AuthenticatorAssertionResponse. When used in attestation, it contains an optional field,
attestedCredentialData. This field is not included when used in the
AuthenticatorAssertionResponse. The attestedCredentialData field contains the
A text string that indicates the format of the attStmt. The WebAuthn specification defines a number of formats; however, formats may also be defined in other specifications and registered in an IANA registry. Formats defined by WebAuthn are:
An attestation statement that is of the format defined by
"fmt". For now, see the WebAuthn specification for details on each format.
See Creating a public key credential using the WebAuthn API for a detailed example.
|Web Authentication: An API for accessing Public Key Credentials - Level 3
BCD tables only load in the browser
CredentialsContainer.create(): the method used to create a statement with a cryptographic
challengewhich signature by the authenticator is contained in
attStmt, with the specified