May I use SHA256 key dynamic instead of paste it in network_security_config file #104

microcian · 2023-02-22T07:26:57Z

I need to secure the key as well as security of the project If I paste the key in network_security_config file it can be hacked using reverse engineering so How can i secure it more.?

rogergcc · 2023-04-13T01:54:54Z

Hi microcian.
why u need a key . i supposed that truskit do automatic

i found an example using by code

about dynamic i want a dynamic way to not to updated my app each 5 months(left certificat pin expiration)

rogergcc · 2023-04-23T15:41:05Z

i testing with the file but support only from Android 7 +

for below
now using code way with okhttp, retrofit
.certificatePinner

rogergcc · 2023-04-28T20:48:49Z

it can be hacked using reverse engineering so How can i secure it more

u tested that can be hacked?
test this cases
key in buidconfig
key in sharepreferences
key in database room or sqlite

microcian changed the title ~~May I place SHA256 dynamic instead of under network_security_config file~~ May I use SHA256 key dynamic instead of paste it in network_security_config file Feb 22, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

May I use SHA256 key dynamic instead of paste it in network_security_config file #104

May I use SHA256 key dynamic instead of paste it in network_security_config file #104

microcian commented Feb 22, 2023

rogergcc commented Apr 13, 2023 •

edited

Loading

rogergcc commented Apr 23, 2023 •

edited

Loading

rogergcc commented Apr 28, 2023

May I use SHA256 key dynamic instead of paste it in network_security_config file #104

May I use SHA256 key dynamic instead of paste it in network_security_config file #104

Comments

microcian commented Feb 22, 2023

rogergcc commented Apr 13, 2023 • edited Loading

rogergcc commented Apr 23, 2023 • edited Loading

rogergcc commented Apr 28, 2023

rogergcc commented Apr 13, 2023 •

edited

Loading

rogergcc commented Apr 23, 2023 •

edited

Loading