Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use Network Security Configuration to Secure TLS Connections #61

Open
U8NWXD opened this issue Jul 27, 2018 · 1 comment
Open

Use Network Security Configuration to Secure TLS Connections #61

U8NWXD opened this issue Jul 27, 2018 · 1 comment

Comments

@U8NWXD
Copy link
Member

U8NWXD commented Jul 27, 2018

Setup a Network Security Configuration to strengthen the security of the app's TLS-secured connections by:

  • Opting out of clear-text traffic to prevent accidental insecure connections
  • Pinning CultureMesh's certificate into the app. This prevents rogue or compromised CAs from generating certificates our app will trust.
    • Warning: This requires careful planning, as if the keys change or are revoked, the app could refuse to accept the replacement keys. Backup keys may help with this.
@U8NWXD
Copy link
Member Author

U8NWXD commented Jul 29, 2018

Apparently this is only available since API v24, and our current minimum is v19. I will leave this issue open in case there is a better way to do certificate pinning, but downgrade its priority.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@U8NWXD