ClientData is sent from the FIDO Client to the relying party, and its hash will be sent back from the relying party to the Client for verifying the signature on both registration and authentication responses.
The registration and authentication request messages contain a challenge parameter, which is defined as the SHA-256 hash of a (UTF8 representation of a) stringified JSON data structure that the FIDO client has to prepare. The FIDO Client must send the Client Data to the relying party during the verification phase, where the relying party can regenerate the challenge parameter (by hashing the client data), which is necessary in order to verify the signature both on the registration response message and authentication response message.
Nested Class Summary
Public Method Summary
Inherited Method Summary
public static final String KEY_CHALLENGE
public static final String KEY_CID_PUBKEY
public static final String KEY_ORIGIN
public static final String KEY_TYPE
public static final String TYPE_FINISH_ENROLLMENT
public static final String TYPE_GET_ASSERTION
public boolean equals (Object other)
public int hashCode ()
public String toJsonString ()
- The stringified JSON object encoding of this ClientData object.