pinning

IBM MobileFirst certificate pinning best practices

こ雲淡風輕ζ 提交于 2019-12-05 07:24:09
We are developing an IBM MobileFirst 7.1 Hybrid mobile application, and planning to use the certificate pinning feature. We can find information on IBM website about the SSL certificate pinning on IBM MobileFirst website : Here is a post in the IBM Knowledge Center and Here is a tutorial and its sample project/code All these resources are great, but I have some questions : Are there any advantages to use native certificate pinning implementation for Android and iOS when my application is a hybrid application ? If I use the hybrid environment code, will the SSL certificate be included in the

SSL Pinning with Volley network library on Android

主宰稳场 提交于 2019-12-04 16:33:35
问题 I want to use SSL Pinning in volley network library. Is there any way to implement SSL pinning with volley? Does volley provide this support for security improvements? 回答1: I just implemented it like described here: http://blog.ostorlab.co/2016/05/ssl-pinning-in-android-networking.html Here is the needed code for a volley-implementation: CertificateFactory cf = CertificateFactory.getInstance("X.509"); // Generate the certificate using the certificate file under res/raw/cert.cer InputStream

How to disable Toast Messages generated in Screen Pinning?

社会主义新天地 提交于 2019-12-04 16:27:57
问题 i'm developing lockscreen application, and i want to disable home button, my app is - Device Owner and Device Administrator now i'm usnig screen pinning for disable home button. but if i started activity each time i get msg "Screen pinned" and on close "Screen Unpinned" and if click on home then, "Unpinning isn't allowed by your organisation" I want to remove all those toast messages. 回答1: Assuming you used the ADB to list your app as a Device Owner, you can use a similar command prompt to

How to prevent an app from being pinned in Windows 7?

自古美人都是妖i 提交于 2019-12-04 13:13:25
问题 I am trying to prevent the user from pinning my .NET app to the taskbar. I've found some code on the Old New Thing that does just that. However, it is in C++. #include <shellapi.h> #include <propsys.h> #include <propkey.h> HRESULT MarkWindowAsUnpinnable(HWND hwnd) { IPropertyStore *pps; HRESULT hr = SHGetPropertyStoreForWindow(hwnd, IID_PPV_ARGS(&pps)); if (SUCCEEDED(hr)) { PROPVARIANT var; var.vt = VT_BOOL; var.boolVal = VARIANT_TRUE; hr = pps->SetValue(PKEY_AppUserModel_PreventPinning, var)

Xamarin Cross Platform Certificate pinning

旧城冷巷雨未停 提交于 2019-12-04 04:21:13
问题 I am designing an application using Xamarin and I want to boost our security by using certificate pinning. But I cannot find a way to do it. I can use the native approach for android to do it, but I want to know if there is a cross-platform solution to this, or even a solution for windows phone at all. 回答1: On Android and iOS you can use the standard .NET way with ServicePointManager.ServerCertificateValidationCallback . On Windows Phone 8 you can use StreamSocket , call UpgradeToSslAsync

Dynamic certificate pinning

独自空忆成欢 提交于 2019-12-03 12:27:41
问题 I have an iOS application that will be distributed to multiple customers, each using their own network infrastructure. I would like to add some certificate pinning capabilities, but I need to do it in a dynamic fashion since I cannot ship the app with the cert/pubkey bundled, as doing so would require a different build for each customer. My idea is to query the per-client configured HTTPS server on app startup, get the certificate, potentially extract the public key and then pin it. Is it

SSL Pinning with Volley network library on Android

馋奶兔 提交于 2019-12-03 10:44:26
I want to use SSL Pinning in volley network library. Is there any way to implement SSL pinning with volley? Does volley provide this support for security improvements? I just implemented it like described here: http://blog.ostorlab.co/2016/05/ssl-pinning-in-android-networking.html Here is the needed code for a volley-implementation: CertificateFactory cf = CertificateFactory.getInstance("X.509"); // Generate the certificate using the certificate file under res/raw/cert.cer InputStream caInput = new BufferedInputStream(getResources().openRawResource(R.raw.cert)); Certificate ca = cf

Pinning an updateble struct before passing to unmanaged code?

醉酒当歌 提交于 2019-12-03 09:34:48
问题 I using some old API and need to pass the a pointer of a struct to unmanaged code that runs asynchronous. In other words, after i passing the struct pointer to the unmanaged code, the unmanaged code copies the pointer and returns immediately. The unmanaged code can access that struct in background, in another thread. I have no control over the unmanaged code that runs in another thread nor the thread itself. The fixed { } statement can't be used for pinning because it not designed for async

Windows 8 prepare site for pinning

爷,独闯天下 提交于 2019-12-02 17:20:28
I would like to prepare my site for windows 8 pinning and have been reading some documentation on how to add the various images and could figure out that it could be done by using metadata and according to instructions and help on this site I could actually build the following meta tags but i couldn't figure out where I can call the browserdetect.xml file assuming I have the file located at mysitee.com/upload/win8/browserdetetct.xml and the images in the same folder <meta name="application-name" content="MySite"/> <meta name="msapplication-TileColor" content="#2d90c6"/> <meta name=

Xamarin Cross Platform Certificate pinning

不问归期 提交于 2019-12-01 22:49:39
I am designing an application using Xamarin and I want to boost our security by using certificate pinning. But I cannot find a way to do it. I can use the native approach for android to do it, but I want to know if there is a cross-platform solution to this, or even a solution for windows phone at all. On Android and iOS you can use the standard .NET way with ServicePointManager.ServerCertificateValidationCallback . On Windows Phone 8 you can use StreamSocket , call UpgradeToSslAsync after connecting and then read the certificate details. On Windows Phone 8.1 you may also use var uri = new Uri
订阅 pinning