September 14, 2022 at 9:35 AM
Hello every body,
this is protection method for using SSL/TLS in Android as far as know :
TrustManager
[align=justify]TrustManager is a component responsible for deciding whether the Android app should accept credentials submitted by the peer or not
This mechanism is sourced from the javax.net.ssl package and you can use it to implement Android Certificate Pinning.[/align]
OkHttp and CertificatePinner
Network Security Configuration
The Android platform provides a new, easy tool to handle network configuration - Network Security Configuration (NSC).
It has been available since Android 7.0. With NSC, you can declare secure communication methods, including Android Certificate Pinning, using XML files.
To enable the configuration, you need to bind a configuration file with the Manifest. To bind it, use the networkSecurityConfig attribute in the application tag.
what the most secure certificate pinning ?
For Implement
https://breached.to/Thread-Android-SSL-TLS-Pinning-Source-Code-Implement
Thank's
this is protection method for using SSL/TLS in Android as far as know :
TrustManager
[align=justify]TrustManager is a component responsible for deciding whether the Android app should accept credentials submitted by the peer or not
This mechanism is sourced from the javax.net.ssl package and you can use it to implement Android Certificate Pinning.[/align]
OkHttp and CertificatePinner
OkHttp by Square is a very popular HTTP client library for Java and Android.
The library is used by one of the most popular tools for handling REST communication in Android - Retrofit.
OkHttp provides a mechanism that makes implementing Certificate Pinning easy, as it only requires creating an instance of CertificatePinner using a dedicated builder with its corresponding fingerprints.
The fingerprints need to be hard-coded into the Android app, of course. Then, you need to build an OkHttpClient instance with the CertificatePinner.
The library is used by one of the most popular tools for handling REST communication in Android - Retrofit.
OkHttp provides a mechanism that makes implementing Certificate Pinning easy, as it only requires creating an instance of CertificatePinner using a dedicated builder with its corresponding fingerprints.
The fingerprints need to be hard-coded into the Android app, of course. Then, you need to build an OkHttpClient instance with the CertificatePinner.
Network Security Configuration
The Android platform provides a new, easy tool to handle network configuration - Network Security Configuration (NSC).
It has been available since Android 7.0. With NSC, you can declare secure communication methods, including Android Certificate Pinning, using XML files.
To enable the configuration, you need to bind a configuration file with the Manifest. To bind it, use the networkSecurityConfig attribute in the application tag.
what the most secure certificate pinning ?
For Implement
https://breached.to/Thread-Android-SSL-TLS-Pinning-Source-Code-Implement
Thank's
