Modem attestation token

The Modem attestation token library is used to obtain an attestation token from an nRF91 Series device.

Attestation tokens are used to verify the authenticity of the device. An attestation token includes the device’s internal UUID and the UUID of the modem firmware that is installed in the device. An attestation token consists of two base64url strings. The format is base64url1.base64url2. The first base64url string (base64url1) is the Device Identity Attestation message, which is a CBOR encoded payload containing the device UUID, device type, and modem firmware UUID. The second base64url string (base64url2) is the CBOR Object Signing and Encryption (COSE) authentication metadata.

To use the library to obtain the attestation token, complete the following steps:

The function modem_attest_token_parse() parses nrf_attestation_token and populates the nrf_attestation_data structure with the data. To obtain only the device UUID string or the modem firmware UUID string or both, you must call modem_attest_token_get_uuids().

Configuration

Configure the following options when using this library:

API documentation

Header file: include/modem/modem_attest_token.h
Source file: lib/modem_attest_token/modem_attest_token.c
Modem attestation token