Stack Overflow
Stack Overflow

Questions tagged [certificate-pinning]

94 questions
3
votes
1 answer

Certificate pinning using cpprestsdk & boost

I'm trying to implement certificate pinning over [cpprestsdk][1], so far without success. I have seen in inside http_client_config object we can call method set_ssl_context_callback and inside that method, link it to custom certificate validation…
IdoT
  • 2,831
  • 1
  • 24
  • 35
2
votes
1 answer

why ruby get the cert trust chain is different from gnutls-cli

I found a strange phenomenon when using the command gnutls-cli and ruby code to test the cert pinning of the website. Sometimes the number of certificate trust chains obtained by the two methods is different. commandline gnutls-cli…
Jay
  • 23
  • 3
2
votes
2 answers

Certificate pinning Android with Retrofit

I am implementing ssl pinning in my app and i use leaf node certificate which is for my website in certificate hierarchy. val certificatePinner = CertificatePinner.Builder() .add( BuildConfig.DOMAIN, …
Mahesh
  • 1,257
  • 1
  • 14
  • 24
2
votes
0 answers

Why does tls certificate verification fail when pinning an invalid intermediate certificate but valid leaf (server) certificate?

Here is the scenario and things that i have tested : I am doing certificate pinning in mobile application ( flutter app) to pin the certificates of our backend domain. Certificate verification passes and the connection is established successfully…
Natesh bhat
  • 12,274
  • 10
  • 84
  • 125
2
votes
1 answer

Using pinned certificates with AVPlayer in iOS

Is there a way to get AVPlayer to enforce certificate pinning in iOS? Our video loading code is basically: let url = URL(string: "https://www.example.com/file.mp4")! let item = AVPlayerItem(url: url) We're able to do certificate pinning with…
Zach
  • 75
  • 5
2
votes
1 answer

How does OkHttp handle non-matching domains with cert pinning?

Let's say I pin a cert for a specific domain: CertificatePinner certPinner = new CertificatePinner.Builder() .add("*.domain1.com", CertificatePinner.pin(...)) .build() OkHttpClient client = new OkHttpClient.Builder() …
tir38
  • 9,810
  • 10
  • 64
  • 107
2
votes
0 answers

Add multiple .bks files for SSL pinning in Android

I am using OkHttpClient library for HTTP requests and having two '.bks' files in the 'res/raw' folder for doing SSL pinning. I have written the following code for fetching the one '.bks' file. But how to add the multiple…
vishnu
  • 4,377
  • 15
  • 52
  • 89
2
votes
0 answers

ssl pinning with react native and ios

I want to implement ssl pinning (pinning public key) in my project. To do that, i use react-native-ssl-pinning. I follow the instructions to install, and it works well with android. However, on iOS, I always get an error "Cancelled". When run from…
Sylvain
  • 509
  • 1
  • 7
  • 17
2
votes
1 answer

I'm working with react_native_mqtt and need to implement secure mqtt communication between client and sever

While connecting to the mqtt server I'm setting useSSL to true. 443 port is being used. I need to use SSL pinning with this call, is setting useSSL flag enough? If not then suggest me the way in which I can use SSL pinning to securely connect with…
Gatha
  • 31
  • 3
2
votes
0 answers

How to use public key pinning instead of certificate pinning

I have been using certificate pinning. But now the requirement is to change to public key pinning. I took the project from someone else. I can implement public key pinning using Trustkit. But If I am going to use TrustKit, I have to change a lot of…
Jack Golden
  • 21
  • 3
2
votes
2 answers

OkHttp3, Retrofit and certificate pinning: how to give an expiration to the pinning

In my Android application, I need to use certificate pinning. I'm using Retrofit and OkHttp3 to consume web service and I already define the pinning on hashcode of the certificate. CertificatePinner certificatePinner = new…
xcesco
  • 4,690
  • 4
  • 34
  • 65
2
votes
1 answer

How to Verify the hsotnameverifyer using ssl pinning in android using Resttemplate

I'm doing a banking application for interacting client and server for secure purpose using HTTPs for that I have to add SSL pinning in android using rest template. I checked many links for restemplate code, but it's not working properly. Is this…
siddhi
  • 21
  • 4
2
votes
1 answer

TLS Certificate pinning in gRPC

Using the Objective-C gRPC library, how do I implement TLS certificate pinning? Bonus question: how do I achieve this using GRPCcall2, and not the deprecated GRPCcall?
Phlippie Bosman
  • 5,378
  • 3
  • 26
  • 29
2
votes
2 answers

SSL Pinning using AFNetworking in iOS not working

I am using AFnetworking. My application webserver is in TLS 1.2. I want to add Certificate pinning to my iOS app. My code as below: AFHTTPSessionManager *manager=[[AFHTTPSessionManager manager] initWithBaseURL:serviceURL]; NSSet…
Mithun Raj
  • 51
  • 5
2
votes
0 answers

The most secure network library for Android

Recently I have used the retrofit 2.3.0 networking library in my project. I have also implemented SSL pinning for securing the app, using the CertificatePinner class in the Okhttp and thus Retrotif. However, after another team has run a…
Farhad
  • 12,178
  • 5
  • 32
  • 60
1
2
3 4 5 6 7