Step C5
Backend Binding
System securely binds passkey → customer → matter in database
⚙️
BACKEND REGISTRATION PROCESS
[INFO] Passkey registration initiated
customer_id: "CLIENT-SM-A3B9-4D71"
matter_id: "MAT-RC-2024-1847"
credential_id: "cred_f8e9d2a1b3c4..."
public_key: "-----BEGIN PUBLIC KEY-----\nMIIBIjAN..."
✓ Passkey public key stored securely
✓ Credential ID linked to customer record
✓ Matter binding established
✓ Device attestation verified
✓ Onboarding timestamp recorded
[INFO] Customer registration complete
// Only this customer's device, using their biometrics,
// can authorize instructions for this matter
🔐 Passkey Data Stored
Public Key
ECDSA P-256 (Hardware-backed)
Credential ID
cred_f8e9d2a1b3c4e5f6...
Algorithm
ES256 (ECDSA SHA-256)
👤 Customer Binding
Customer ID
CLIENT-SM-A3B9-4D71
Customer Name
Sarah Mitchell
Verified Email
sarah.mitchell@example.com
📋 Matter Binding
Matter ID
MAT-RC-2024-1847
Matter Type
Residential Purchase
Handling Solicitor
Emma Thompson
📱 Device Attestation
Device Type
iPhone 15 Pro
Secure Hardware
Secure Enclave Confirmed
Onboarded
2024-12-09 14:23:17 UTC
🛡️ Security Model
From this moment forward:
✓ Only Sarah Mitchell's device, using her biometrics, can authorize instructions for matter RC-2024-1847
✓ The private key never left her device's Secure Enclave
✓ The backend stores only the public key (cannot be used to impersonate)
✓ Device attestation proves the key is hardware-backed
✓ All future verification requests must provide a valid signature from this specific passkey