• Introducing XDA Computing: Discussion zones for Hardware, Software, and more!    Check it out!

Would it be possible for manufacturers to provide you with your phones' unique Android Attestation Key?

Search This thread

jeffreyo

Member
Feb 1, 2015
10
1
Xperia XZ2
Perhaps we might have the ability to regenerate our own keys? They appear to be generated by the secure bootloader and the attestation key seems to change on updates. So, if we give the generator what it needs from the secure bootloader (Which shouldn't be lost if it stays locked), the Android version, and patch level could we generate a new key, like what the system seems to do on the very first boot?

 

jwoegerbauer

Senior Member
Jul 11, 2009
7,214
22
1,676
European Union
AFAIK the hash keys stored in the vbmeta files are generated when manufacturers compile Android for their phones. Also Android's boot.img gets signed by OEM.

May be you by means of AVB2TOOL can regenerate the vbmeta files on base of installed Android at your own. But IDK it.

FYI: On device's very 1st boot the ANDROID_ID key gets generated, not the vbmeta files.
 
  • Like
Reactions: jeffreyo

Top Liked Posts

  • There are no posts matching your filters.
  • 1
    AFAIK the hash keys stored in the vbmeta files are generated when manufacturers compile Android for their phones. Also Android's boot.img gets signed by OEM.

    May be you by means of AVB2TOOL can regenerate the vbmeta files on base of installed Android at your own. But IDK it.

    FYI: On device's very 1st boot the ANDROID_ID key gets generated, not the vbmeta files.