Stack Overflow
Stack Overflow

Questions tagged [certificate-pinning]

94 questions
2
votes
1 answer

Android - Certificate Pinning with Retrofit 2.3 and OkHTTP

Hello dear developers, I have the following Problem: I´m using Certificate Pinning successfully since a few months now, with OkHTTP 3.6 and Retrofit 1.9.0. Recently I updated the used Retrofit version to 2.3.0 and with this started using OkHttp 3.8.…
Koerfer_P
  • 341
  • 2
  • 13
2
votes
1 answer

SSL pinning using cordova plugin isn't working. I am getting SSL handshake failed, error code 500

I am trying to implement SSL pinning using Cordova plugin for Android and i am getting an error 500: SSL handshake failed error. I am running the app on Android N. I have tried below plugins…
vandana chaurasia
  • 21
  • 2
2
votes
1 answer

Okhttp - Certificate Pinning and Public Key Pinning

I want to improve safety of my Android application. I am using OkHttp version 3. How to: 1) use Certificate Pinning with OkHttp. 2) use Public Key Pinning with OkHttp. When I am doing this: httpClient.certificatePinner(new…
taulus
  • 69
  • 8
2
votes
1 answer

SSL - Public key pinning confusion

How SSL key pinning prevents MITM attacks when some CA is compromised? What I understand from comprising CA is, private keys are compromised and an attacker can easily get symmetric key used to encrypt data. Am I right? Another thing, if public…
mallaudin
  • 4,744
  • 3
  • 36
  • 68
1
vote
1 answer

Trouble implementing react-native-ssl-pinning with axios in React Native version 0.71.8

I'm facing an issue while trying to implement SSL pinning using the react-native-ssl-pinning library in my React Native project. Specifically, I'm using React Native version 0.71.8. Both react-native-ssl-pinning and react-native-cert-pinner are…
Waseem Kurne
  • 41
  • 7
1
vote
0 answers

google v2 ct list deprecated

I have implemented Certificate transparency using com.appmattus.certificatetransparency:certificatetransparency library. Now v2 list is not supported by google and every API is giving this error Failure: Unable to load log servers with log-list.json…
Parth Gupta
  • 69
  • 1
  • 5
1
vote
0 answers

How to get base64 encoded SHA-256 hash cert

I need to get base64 encoded SHA-256 hash to do certificate pin val certPinner = CertificatePinner.Builder() .add("hostName", "sha256/ASDfFgggg7YQB0Xt7Q5WZL5jhiRaXnPrjO/KwGh0G5g=") .build() I usually get the String (after sha256/) through…
Lena
  • 11
  • 2
1
vote
0 answers

SSL Pinning vs Certificate Transparency

I am trying to understand whether SSL Pinning or Certificate transparency is the right way to go. Been reading online and found some article that suggests the SSL Pinning is depreciated. Can you help me with some insights about that? what is better?…
Eman Darwish
  • 11
  • 1
1
vote
0 answers

Certificate Pinning in ktor kmm on Android devices below android 7

After testing network_security_config file with android 28, I see the certificate pinning working when using ktor kmm (using OkHttp) However, in devices below android 7, Is there any way to setup certificate pinning. I tried these codes, but it…
Hien Nguyen
  • 744
  • 2
  • 7
  • 20
1
vote
0 answers

Amazon root certificate pinning in Flutter, Dart

I'm using AWS CA to generate an SSL certificate for ElasticBeanstalk that I'm using in my Flutter app. Based on the bets practices, I'm trying to pin HTTP client the Root certificate from Amazon Trusted Services I face 2 issues with the Flutter…
ilbets
  • 710
  • 1
  • 9
  • 35
1
vote
0 answers

NSIncludesSubdomains to support multiple subdomains

I am following Apple's documentation to introduce NSPinnedDomains as the primary certificate pinning solution in our application. We have a multiple environments to communicate to, and could have multiple subdomains, for…
dirtydanee
  • 6,081
  • 2
  • 27
  • 43
1
vote
1 answer

How to implement certificate pinning for a TcpClient

I'm trying to set up a TCP stream (non-HTTP) on a server that will be exposed to the public internet, but only "chosen" clients should be able to connect to. As I understand it, this is generally handled by certificate pinning, but I'm not familiar…
Mason Wheeler
  • 82,511
  • 50
  • 270
  • 477
1
vote
0 answers

Android Trust anchor for certification path not found for Self signed certificate using Okhttp

My Server is using Self-Signed certificate. I am using Okhttp + Retrofit for api calls. I have got crt file and public key [SHA-256] from the server. Following this and this links from Google docs, I have created a network_security_config file in…
Nouman Bhatti
  • 1,777
  • 4
  • 28
  • 55
1
vote
1 answer

OkHttp certificatePinner seems not working

i need some help, im trying to implement SSLPinning on my react-native application (v0.63). im already follow the documentation on OkHttp github page here is code i make for my application : public class CustomClientFactory implements…
tiwtiwtiwtiwaaaaa
  • 110
  • 9
1
vote
1 answer

OkHttp Certificate pinning Error or default behavior?

Recently, I've been testing the certificate pinning implementation provided by OkHttp using version 4.9.0 + Retrofit 2.9.0; And I've noticed that the hash check is not conjunctive but rather disjunctive. According to the example implementation the…
MauRo NRa
  • 65
  • 1
  • 8
1 2
3
4 5 6 7