We do not seem to have any way to ensure the data we are being provided when using the Cisco/CafeX libraries is actually coming from the server we expect it to come from. We would ideally be looking for a way to be able to pin our server certificates in the app so that we can ensure the data is coming from a valid source. Is this something that is available within the SDKs?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Hi Brad,
Their is no specific support for Certificate Pinning in the REM SDKs so you would have to write your own pinning mechanism.
Regards,
Rob
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Hey, Rob. It seems like some additional session delegates are required to pin the cert to the REM session. I believe we have identified this as a feature/enhancement request. We'll get this into the feature request work stream. Cheers, Brad.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Comments
0 comments
Please sign in to leave a comment.