Jon Stanford

@JonStanford (1)
cert.ist Certificate pinning example
posted to Share by JonStanford

@DynamicSquid Certificate pinning is when a developer needs to validate a https certificate beyond the typical trust the system root certificate stores. For most applications this is enough validation however some apps require a higher level of certainty they are speaking only to the expected domains.

References:
https://owasp.org/www-community/controls/Certificate_and_Public_Key_Pinning
https://cert.ist