man Tspi_DAA_IssueCredential (3): issue a DAA credential for a TCG platform

SYNOPSIS

#include <tss/tss_typedef.h>
#include <tss/tss_structs.h>
#include <tss/tspi.h>

TSPICALL Tspi_DAA_IssueCredential(
TSS_HDAA hDAA,
UINT32 attributesIssuerLength,
BYTE** attributesIssuer,
TSS_DAA_CREDENTIAL_REQUEST credentialRequest,
TSS_DAA_JOIN_ISSUER_SESSION joinSession,
TSS_DAA_CRED_ISSUER* credIssuer
);

DESCRIPTION

Tspi_DAA_IssueCredential is part of the DAA Issuer component. It's the last function out of 2 in order to issue a DAA Credential for a TCG Platform. It detects rogue TPM according to published rogue TPM DAA keys. This is an optional function and does not require a TPM or a TCS.

PARAMETERS

hDAA

The hDAA parameter is used to specify the handle of the DAA object.

attributesIssuerLength

The attributesIssuerLength parameter is the length of the attributesIssuer array, which is determined by the DAA Issuer public key (li). The length of a single attribute is if/8.

attributesIssuer

The attributesIssuer parameter is the array of attributes to be encoded into the DAA Credential visible to the DAA Issuer .

credentialRequest

The credentialRequest parameter is the credential request of the Platform, it contains the blinded DAA public key of the platform on which the DAA Issuer will issue the credential the blinded attributes chosen by the Platform.

joinSession

The joinSession parameter is the structure containing the DAA Join session information.

credIssuer

The credIssuer parameter is the structure containing the DAA Credential issued by the DAA Issuer, the proof of correctness of the credential and the attributes chosen by the DAA Issuer.

RETURN CODES

Tspi_DAA_IssueCredential returns TSS_SUCCESS on success, otherwise one of the following values is returned:

TSS_E_BAD_PARAMETER
TSS_E_INTERNAL_ERROR: An internal SW error has been detected.
TSS_E_DAA_AUTHENTICATION_ERROR: The authentication proof of the TPM is incorrect.
TSS_E_DAA_PSEUDONYM_ERROR: The TPM is rogue.
TSS_E_DAA_CREDENTIAL_REQUEST_PROOF_ERROR: The proof of the credential request is incorrect.

CONFORMING TO

Tspi_DAA_IssueCredential conforms to the Trusted Computing Group Software Specification version 1.2