Stack Overflow
Stack Overflow

Questions tagged [pinning]

Pinning is the process of associating a host with their expected X509 certificate or public key.

Pinning is the process of associating a host with their expected X509 certificate or public key.

Once a certificate or public key is known or seen for a host, the certificate or public key is associated or 'pinned' to the host. If more than one certificate or public key is acceptable, then the program holds a pinset. In this case, the advertised identity must match one of the elements in the pinset.

Owasp pinning cheatsheet

179 questions
9
votes
2 answers

Windows 8 prepare site for pinning

I would like to prepare my site for windows 8 pinning and have been reading some documentation on how to add the various images and could figure out that it could be done by using metadata and according to instructions and help on this site I could…
digitup
  • 537
  • 2
  • 6
  • 18
8
votes
3 answers

Certificate Pinning - Public Key only?

I would like to pin the public key of an root CA (verisign - http://www.verisign.com/repository/roots/root-certificates/PCA-3G5.pem) into my iOS app. Is is better to pin the public key or the subjectPublicKeyInfo? Could someone please explain me…
MrCoinSiX
  • 571
  • 1
  • 6
  • 13
7
votes
3 answers

Do I need to pin an anonymous delegate?

I am calling CopyFileEx from a C# application with an anonymous delegate being passed into the LPPROGRESS_ROUTINE parameter in order to get notifications on the file copy progress. My question is, does the anonymous delegate need to be pinned and…
SpeksETC
  • 1,003
  • 2
  • 7
  • 13
7
votes
0 answers

TrustKit with SHA256withRSA

I'm trying to configure SSL pinning in my app with TrustKit but I'm getting this error: Terminating app due to uncaught exception 'TrustKit configuration invalid', reason: 'TrustKit was initialized with an invalid value for TSKPublicKeyAlgorithms…
John
  • 313
  • 3
  • 14
6
votes
3 answers

How to prevent an app from being pinned in Windows 7?

I am trying to prevent the user from pinning my .NET app to the taskbar. I've found some code on the Old New Thing that does just that. However, it is in C++. #include #include #include HRESULT…
AngryHacker
  • 59,598
  • 102
  • 325
  • 594
6
votes
1 answer

IBM MobileFirst certificate pinning best practices

We are developing an IBM MobileFirst 7.1 Hybrid mobile application, and planning to use the certificate pinning feature. We can find information on IBM website about the SSL certificate pinning on IBM MobileFirst website : Here is a post in the IBM…
WiPhone
  • 683
  • 6
  • 24
6
votes
2 answers

How to get a backup pin for TrustKit framework's SSL pinning under iOS?

I'm currently implementing the TrustKit framework in my iOS app to enable SPKI pinning for SSL connections. I'm stumbling upon the "backup pin" which is mandatory for a correct TrustKit configuration. Unfortunately the API documentation only states…
Pvt. Joker
  • 155
  • 1
  • 10
6
votes
0 answers

Certificate pinning in Android

I am trying to learn how to do certificate pinning in an Android application. I found the tutorial here. I wanted to clarify I doubt I have based on my testing this code. I used the code as follows : public class CertificatePinning { static…
Jake
  • 16,329
  • 50
  • 126
  • 202
5
votes
2 answers

How can I do public key pinning in Flutter?

I want to the pin the public key of my server so that any request made to the server has to have that public key (this is to prevent proxies like Charles sniffing the data). I had done something similar in Android with Volley. How can I do the same…
Harsh Bhikadia
  • 10,095
  • 9
  • 49
  • 70
5
votes
3 answers

GCHandle, Marshal, managed and unmanaged memory : To pin or Not To Pin

As Hans Passant wishes here is the scenario of mine. I have a mixed mode application in which the native code does all the hard work while respecting the performance and managed code is responsible for only GUI. Also users will be participating by…
ali_bahoo
  • 4,732
  • 6
  • 41
  • 63
5
votes
1 answer

OkHttp PublicKey pinning on Android

Does anyone know how we could implement Public Key pinning with OkHttp3 Have been reading about SSL pinning and I see that we could do it with either Certificate Pinning or Public Key pinning (the latter seems more flexible). But I was only able to…
source.rar
  • 8,002
  • 10
  • 50
  • 82
5
votes
1 answer

Square okHTTP certificate pinning - sslSocketFactory error

I am trying to import my own BKS file, which contains my self signed certificate but I am running into trouble with okHTTP. I want to do this with the bks file, I also got it working via the sha512/. I ve got this code from several tutorials and I…
user3325230
  • 507
  • 1
  • 6
  • 19
5
votes
3 answers

Indexing into arrays of arbitrary rank in C#

I need to iterate over an array of arbitrary rank. This is for both reading and writing, so GetEnumerator will not work. Array.SetValue(object, int) doesn't work on multidimensional arrays. Array.SetValue(object, params int[]) would require…
Kennet Belenky
  • 2,755
  • 18
  • 20
5
votes
1 answer

SSL certificate pinning with libcurl

I'd like to know if this example is enough to provide certificate pinning with libcurl: http://curl.haxx.se/libcurl/c/cacertinmem.html because I have found that curl also allows http://curl.haxx.se/libcurl/c/CURLOPT_PINNEDPUBLICKEY.html Since I'll…
SP Miguel Janer
  • 53
  • 1
  • 3
5
votes
1 answer

Bind tmpfs or ramfs to a specific memory node

I'm working on a NUMA server which has two memory nodes. I want to create a file system which will be loaded in main memory like tmpfs or ramfs and I want to bind it to a specific memory node. In other words I don't want the ramfs contents to be…
user3761809
  • 111
  • 6
1
2
3
11 12