After using short certificate chain, trust is broken in certificate pinning mechanism

You mentioned a "certificate pinning mechanism" so we'd need to know exactly how that is coded to help. This is definitely a coding problem, not an infrastructure issue. You can work around it temporarily by using the long chain (or composing a full chain pem with the long chain).

3 Likes

It sounds like you're trying to do exactly the right thing, but some bug is preventing it from working correctly. In order to help more, we're going to need more details, such as your Android app's network_security_config.xml file.

3 Likes

Issue was fixed by updating KMP on Android. The problem was at verification of certificates; Android had an older version for a library regarding certificates and when the KMP update was done, it solved this issue also

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.