Certificate pinning is a security measure for applications, ensuring they exclusively communicate with trusted servers. Unlike the conventional trust model reliant on the device's root certificate store, pinning involves embedding a specific certificate or public key directly into your application code. However, it's crucial to recognize the potential drawbacks associated with pinning, particularly concerning certificate rotation. Replacing the existing certificates becomes mandatory, and you will need to maintain this task.

📘

We strongly advise against Certificate Pinning

Datatrans strongly advises against certificate pinning and public key pinning due to potential issues with certificate rotation. Please contact us before implementing pinning.

While certificate pinning fortifies security, its implementation and management demand meticulous attention. Regular updates are indispensable to adapt to certificate changes, and improper configurations could result in service disruptions. Seeking guidance from your service provider, such as Datatrans, before integrating pinning into your application is highly recommended.

Certificate Download

Production Certificates

Sandbox Certificates

TLS Support

We support the following TLS Cipher Suites:

• TLS_AES_256_GCM_SHA384
• TLS_AES_128_GCM_SHA256
• TLS_CHACHA20_POLY1305_SHA256
• TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
• TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
• TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256