Category: Londroid

Move over certificate pinning. Certificate Transparency is here!

Failing to protect your user’s data can not only result in fines but of course loss of your user’s trust We can protect our apps against man-in-the-middle attacks using techniques such as certificate pinning. However, as we will see, implementing certificate pinning requires us to answer questions such as which certificate to pin against that doesn’t have a straight forward...