Invalid characters in MDS3 attestationRootCertificates

[Andrey Paramonov]

Greetings,

According to the spec, in the attestationRootCertificates array each "element is a base64-encoded (section 4 of [RFC4648]), DER-encoded [ITU-X690-2008] PKIX certificate value."

In the latest MDS3 blob there are several certificate values that contain the line break string ("\n") or a blank string (" "). This is technically an invalid base64 character string. Is it a bug in the current blob? Or is an MDS client supposed to strip invalid characters from the certificate values before decoding them? If the latter is true, the spec should probably be updated to mention that. If it is a bug indeed, what's the procedure to fix those invalid cert values?

In general, if an error is found in the MDS3 blob, where should it be reported? Is this forum a right place for that? Or is there a GitHub repository where the issue should be filed?

Thanks.

[Bart de Water]

https://fidoalliance.org/metadata/ has an email address at the bottom for assistance :) failing that https://fidoalliance.org/contact/ has helped me in the past with an issue.

[Ackermann Yuriy]

These issues should be fixed now.

Yuriy Ackermann

FIDO, Identity, Standards

skype: ackermann.yuriy

github: @herrjemand

twitter: @herrjemand

medium: @herrjemand

--
You received this message because you are subscribed to the Google Groups "FIDO Dev (fido-dev)" group.
To unsubscribe from this group and stop receiving emails from it, send an email to fido-dev+u...@fidoalliance.org.
To view this discussion on the web visit https://groups.google.com/a/fidoalliance.org/d/msgid/fido-dev/54440f19-75b3-41bc-be55-adab173a9342n%40fidoalliance.org.

[David Turner]

MDS support issues can be sent to sup...@mymds.fidoalliance.org

--