Key Attestation Format

This appnote describes the design information for constructing and verifying key attestations based on KLF2 warrants. For information on generating and verifying nShield key attestation bundles using the nfkmattest command line tool, see the documentation on the nShield Key Attestation Verifier.

The current version of this appnote assumes the use of nShield libraries for the processing of any relevant data. If required, the same can be achieved using corresponding third-party cryptographic functions and custom format marshaling.