Reputation: 59
Self signed certificate for mobile app and backend from same company
My company's product is Android and iOS mobile app which connects to our own backend. All interactions of the mobile app are with backend developed by our own company.
In such a situation, can the backend use a self signed certificate (instead of getting a certificate from CA) and pin this self-signed certificate on mobile app to make it more secure.
Please let me know if this strategy makes sense (or we still have to get SSL cert from a CA)
Upvotes: 1
Views: 873
Answers (2)
Reputation: 3
I think you should contact the SSL support team for a signed certificate I believe they can give you a solution to update your SSL or need to update for a new certificate
Upvotes: 0
Reputation: 1
This is an old issue, but I think it bears following up on. SSL certs are dirt cheap if purchased from the right companies and not from the "big 3". Comodo has wildcard certs (any subdomain) for USD 60-70/year. They are secure (256 SHA) and install right off. Well worth the money, IMHO.
Upvotes: 0
Related Questions
- Self-signed SSL acceptance on Android
- Whitelist self-signed SSL cetificates in an app?
- AppDevelopment: Create Certificate in app itself
- Self-signing certs for https
- Self signed certificate VS CA certificate for REST APIs over https
- Using a self-signed certificate to create a secure client-server connection in android
- Use APK Certificate to create SSL Context
- android - https with server having self-signed certificate
- Authoritatively signed certificates or own certificate for web service for Android clients with phonegap
- Android application with SSL