Certificate Pinning Mismatch Enforcement Notification

Learn how to customize the App Compromise Notification that will display to a mobile user if Appdome detects a certificate pinning mismatch (ie: if a digital certificate presents a public key to the app which differs from that of the pinned certificate).

Certificate Pinning Mismatch Enforcement

This Knowledge Base article provides instructions on how to customize the App Compromise notification message when Appdome detects a Certificate Pinning mismatch.

We hope you find it useful and enjoy using Appdome!

Certificate Pinning Explained

Digital Certificates are usually verified against intermediate CA certificates, which are then verified against root CA certificates. Root CA certificates are normally stored on a device’s trusted CA store.

Certificate Pinning is the process in which an app stores specific certificates or public key hashes in the app itself, thereby foregoing the verification process as described above. With certificate pinning, the app verifies a server certificate or CA certificate it received directly against the stored certificate or public key hash. If there is a mismatch, the session will be dropped and an App Compromise Notification will be displayed to the mobile user.

Security Features on Appdome

Appdome is a no-code mobile integration platform as a service (iPaaS), supporting a wide variety of implementations for Android and iOS apps easily. Using a simple ‘click to add’ user interface, Appdome allows anyone to add mobile app security to any iOS or Android app in seconds, no code or coding required.

Using Appdome, there are no development or coding prerequisites. For example, there are no Appdome SDKs, libraries, plug-ins, software or hardware to implement. Likewise, there are no required infrastructure changes.  Users simply upload an Android or iOS app, select their choice of features from Appdome’s Security category, and click “Build My App”. The Appdome technology adds the chosen mobile security features to the app (plus any required standards or framework extensions) automatically, with no manual development work at all.

Prerequisites for Using Appdome for Security

Here is what you need in order to build your app with Appdome mobile security:

How to Customize App Compromise Notifications

Upload a Mobile App to Your Account

Please follow these steps to add a mobile app to your Appdome account.
If you don’t have an Appdome account, click here to create an account.

  1. Open the Build tab
  2. Go to the Security tab
  3. Click  Secure Communications to expend the bundle
  4. Click on the toggle to enable Trusted Session
  5. Click on the toggle to enable SecureAPITM.
  6. Enter a Service Domain.
  7. Select a Pinning Scheme.
  8. Add Certificate(s).
  9. (Optional) Enable Protect Service Domains Only to apply Trusted Session protections and validation only to domains included in the Service Domain list.
  10. (optional) Enable +DEV Events and customize the Certificate Pinning Mismatch Message app.
  11. Click Build My App.

Congratulations! You now have a mobile app fully integrated with Certificate Pinning.

customizing App Compromise Notifications

How Do I Learn More?

Check out the KB article on Appdome Mobile Security Suite

To zoom out on this topic, visit Appdome for Mobile App Security on our website.

Or request a demo at any time.

If you have any questions, please send them our way at support@appdome.com or via the chat window on the Appdome platform.

Thank you!

Thanks for visiting Appdome! Our mission is to make mobile integration easy. We hope we’re living up to the mission with your project. If you don’t already have an account, you can sign up for free.

Alan Bavosa

Have a question?

Ask an expert

DanaMaking your security project a success!