Just some useful links about certificate pinning on Android
For my job, I was looking for some good article about certificate pinning on Android devices. I found these:
- https://medium.com/@appmattus/android-security-ssl-pinning-1db8acb6621e
- https://www.netguru.com/codestories/3-ways-how-to-implement-certificate-pinning-on-android
If you don’t know what it is Certificate Pinning:
Pinning is the process of associating a host with their expected X509 certificate or public key. Once a certificate or public key is known or seen for a host, the certificate or public key is associated or ‘pinned‘ to the host.
https://www.owasp.org/index.php/Certificate_and_Public_Key_Pinning