1FIDO_ASSERT_VERIFY(3)    BSD Library Functions Manual    FIDO_ASSERT_VERIFY(3)
2

NAME

4     fido_assert_verify — verifies the signature of a FIDO 2 assertion state‐
5     ment
6

SYNOPSIS

8     #include <fido.h>
9
10     int
11     fido_assert_verify(fido_assert_t *assert, size_t idx, int cose_alg,
12         const void *pk);
13

DESCRIPTION

15     The fido_assert_verify() function verifies whether the signature con‐
16     tained in statement index idx of assert matches the parameters of the
17     assertion.  Before using fido_assert_verify() in a sensitive context, the
18     reader is strongly encouraged to make herself familiar with the FIDO 2
19     assertion statement process as defined in the Web Authentication (webau‐
20     thn) standard.
21
22     A brief description follows:
23
24     The fido_assert_verify() function verifies whether the client data hash,
25     relying party ID, user presence and user verification attributes of
26     assert have been attested by the holder of the private counterpart of the
27     public key pk of COSE type cose_alg, where cose_alg is COSE_ES256,
28     COSE_RS256, or COSE_EDDSA, and pk points to a es256_pk_t, rs256_pk_t, or
29     eddsa_pk_t type accordingly.
30
31     Please note that the first statement in assert has an idx of 0.
32

RETURN VALUES

34     The error codes returned by fido_assert_verify() are defined in
35     <fido/err.h>.  If statement idx of assert passes verification with pk,
36     then FIDO_OK is returned.
37

SEE ALSO

39     fido_assert_new(3), fido_assert_set_authdata(3)
40
41BSD                              May 10, 2020                              BSD
Impressum