Matthew Dolan

Jan 13, 2017

13 min read

Android Security: SSL Pinning

Using SSL in an Android app is easy, however ensuring that the connection is actually secure is a different matter. A man-in-the-middle attack can be carried out using several methods including ARP cache poisoning and DNS spoofing.

Certificate chain for appmattus.com

Core to SSL (Secure Socket Layer) is the X509 certificate, and trust in the chain of certificates that leads from your leaf certificate through an intermediate certificate authority…

--

--

--

More from Matthew Dolan

Matt Dolan has been eating doughnuts and developing with Android since the dark days of v1.6.

Love podcasts or audiobooks? Learn on the go with our new app.

Try Knowable

AboutHelpTermsPrivacy

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Matthew Dolan

Matthew Dolan

Matt Dolan has been eating doughnuts and developing with Android since the dark days of v1.6.

More from Medium

Guilherme Butzen Kunz

Android WebView(Kotlin): handling Geolocation permission request

Trevor Hackman

Android View Binding Without Boilerplate — Part 2

Abhishek Pathak

Android Notification in Koltin

Yadnesh Desale

Kotlin for Android Development(Part-2)

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Knowable