6 releases

0.5.0 Apr 28, 2024
0.4.8 Nov 11, 2022
0.4.5 Aug 26, 2022

#859 in Authentication


Used in fido-mds-tool

MPL-2.0 license

150KB
2.5K SLoC

FIDO Metadata Service Parser

The FIDO Alliance organisation publishes a "metadata" blob, similar to a certificate transparency report, that lists the status of and trust chains of authenticator devices that have passed their certifications.

This library allows that metadata to be parsed and consumed in a useful manner.


lib.rs:

This library implements support to cryptographically verify, parse, validate and post-process the content of the FIDO Metadata Service. The FIDO Metadata Service acts like a "certificate transparency" registry, defining the certification state of hardware authenticators (such as Yubikeys, Windows Hello, Feitan and more). These Metadata describe the features, certification state, signing CA's and more about these devices.

2022-08-12 - FIDO's Metadata currently has a number of data entry errors - due to this, certain authenticator models will NOT be presented or listed when these errors are severe enough.

Dependencies

~4–6MB
~143K SLoC