How to Allow DNS over TCP, Android & iOS MitM Prevention

Learn how to prevent man-in-the-middle attacks (MiTM) using Appdome. This Knowledge Base article explains how to implement the Appdome Trusted Session feature to prevent mobile Man-in-the-middle attacks. The article also explains how Appdome’s “Permit DNS over TCP” setting works when you implement Appdome Trusted Session.

What is Appdome?

Appdome is a no-code mobile app security platform designed to add security features, like Permit DNS over TCP to Android and iOS apps without coding.  This KB shows mobile developers, DevSec and security professionals how to use Appdome’s simple ‘click to build’ user interface to quickly and easily secure mobile apps without coding. 

Appdome’s no-code mobile app security platform offers mobile developers, DevSec and security professionals a convenient and reliable way to protect Android and iOS apps. When an Appdome user clicks “Build My App,” Appdome leverages a microservice architecture filled with 1000s of security plugins, and an adaptive code generation engine that matches the correct required plugins to the development environment, frameworks, and methods in each app.

Prevent Man-In-The-Middle Attacks With Trusted Session

You can implement Appdome Trusted Session to prevent man-in-the-middle attacks and other forms of session hijacking.  Appdome also protects any app from malicious proxies, modified or untrusted Certificates, and Stale Session renewal.

Appdome Trusted Session validates the authenticity of communication sessions initiated by the app or the server. This includes actively validating TLS/SSL certificates, CAs, session state to prevent any unauthorized modifications.

When implemented in a mobile app, Appdome Trusted Session technology prevents hackers from gaining control over the session before the TLS handshake completes.   When the application starts the SSL Handshake with the server, Appdome’s Trusted Session technology inspects the traffic for anything that looks suspicious. When triggered, the Trusted Session will automatically notify the user of the compromise and drop the connection.

The message displayed to the user can be customized.

Appdome Trusted Session feature

When you build your app with Trusted Session, you can enable any number of additional Session Controls, as seen below.

When you build your app with Appdome Trusted Session enabled, you can also enable one or more “Session Control” options, including “Permit DNS over TCP”.   Building your application with Permit DNS over TCP allows DNS requests over TCP to pass undisrupted. 

Prerequisites for using “Permit DNS over TCP” feature in Appdome Trusted Session

How to Add Trusted Session and “Permit DNS over TCP” to Any Mobile App  

Follow these step-by-step instructions to enable Appdome Trusted Session and Permit DNS over TCP to a mobile app.

Upload a Mobile Application to Your Account

Please follow these steps to add a mobile application to your Appdome account.
If you don’t have an Appdome account, click here to create an account.

From the “Build” tab, go to the Security menu

  • Click  Secure Communications to expend the bundle.
  • Click on the toggle to enable Trusted Session.
  • Expand the sub-bundle Session Control.
    • (optional) Use Permit DNS over TCP  to allow DNS requests over TCP to pass undisrupted (as explained above)
  • Click Build My App

 

appdome permit dns over tcp option

Congratulations! Your app is now secured with Appdome Trusted Session solution.
Appdome Fusion Success Notification

How to Sign & Publish Secured Mobile Apps Built on Appdome  

After successfully securing your app using Appdome, there are several available options to complete your project, depending on your app lifecycle or workflow. These include 

Or, see this quick reference Releasing Secured Android & iOS Apps built on Appdome. 

How To Learn More

Check out the Appdome Trusted Session KB for more detail on Trusted Session and other optional features available.

To zoom out on this topic, visit Appdome for Mobile App Security on our website or request a demo at any time.

If you have any questions, please send them our way at support@appdome.com or via the chat window on the Appdome platform.

Thank you!

Thanks for visiting Appdome! Our mission is to make mobile integration easy. We hope we’re living up to the mission with your project. If you don’t already have an account, you can sign up for free.

Alan Bavosa

Have a question?

Ask an expert

PascalMaking your security project a success!

Get Your Copy
2021 Global Mobile
Consumer Security
Survey