Event JSON
{
"id": "35893cdc18a6fe49d30e83a363b0bef3e358754f4e6139526fd68a315949753d",
"pubkey": "b3ba3c5045fbaf99be9cb4daa9f1d7baeedaba0fc5b91596511e2fb7a70dd7f9",
"created_at": 1742924776,
"kind": 1,
"tags": [
[
"e",
"1620c56c08ce577bc88c6c6e28f59d4a9df981ebb84d4797c3d8b66c95dd1b32",
"",
"root",
"aa00e048807cc42ad98d805e34dbfd7f60832596cf92f6afa4de89a0c751e822"
],
[
"p",
"b3ba3c5045fbaf99be9cb4daa9f1d7baeedaba0fc5b91596511e2fb7a70dd7f9"
],
[
"p",
"aa00e048807cc42ad98d805e34dbfd7f60832596cf92f6afa4de89a0c751e822"
],
[
"proxy",
"https://grapheneos.social/@GrapheneOS/114224318165713524",
"web"
],
[
"proxy",
"https://grapheneos.social/users/GrapheneOS/statuses/114224318165713524",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://grapheneos.social/users/GrapheneOS/statuses/114224318165713524",
"pink.momostr"
],
[
"-"
]
],
"content": "Yes, but provisioned attestation signing keys are also per-app so they can't be used to identify a device across apps either. They are not per-pairing but rather per-app so an app only triggers provisioning when generating a key with attestation enabled. Apps can also generate their own attest purpose keys usable to sign attestations instead of this. It can also reuse it for a while before it has to rotate it. They have short expiry and generating a new key can trigger rotation.",
"sig": "0b371f6bdfa70a51ce5b316e4598363c77d377732c24464b7e373a6b43f4d96480c7689d1fbae5103a114d856e760ce1a209882b148c3a618693591e1557c596"
}