rene_mobile’s Twitter Archive
—№ 2,383
⇤ Newest
Tweet
⇠ Newer
Tweet
Older
Tweet
⇢
@
ikoz
presenting the details on how to properly do TLS pinning on Android #AndroidSecuritySymposium
Permalink
On twitter.com
Mention
♻️ 1
Retweets
❤️ 1
Favorite
2017 Mar 9
Mood
0
…in reply to @rene_mobile
@
ikoz
nice takeaway: nr. of trusted root CAs is actually going down over time, iOS trusts (slightly) more than Android, MS ridiculously high
On twitter.com
2017 Mar 9
Mood +
6
🙂
…in reply to @rene_mobile
@
ikoz
when pinning goes wrong... That's one example why it is important to do pinning correctly.
Permalink
On twitter.com
❤️ 1
Favorite
2017 Mar 9
Mood
0
…in reply to @rene_mobile
@
ikoz
Takeaways: - don't skip chains - don't do X.509 chain validation yourself (!!!) - libraries do it wrong too #AndroidSecuritySymposium
Permalink
On twitter.com
❤️ 4
Favorites
2017 Mar 9
Mood
-2
🙁