Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
fix: do not check OVPubKey on server side
During the onboarding the device checks the OVPubKey hash is the same as the DCPubKeyHash field stored in its DeviceCredential and no further verification is needed on server side. Extracted from the FIDO Specification: This key pair does not specifically identify the manufacturer (e.g., it is not in a certificate) and may be changed from time to time, so long as the Device Credential refers to the same key pair as the Ownership Voucher for that device. Signed-off-by: Miguel Martín <[email protected]>
- Loading branch information