I am using https://github.com/wymsee/cordova-HTTP Cordova plugin to implement SSL pinning in an Android application.
I dont know how to simulate the environment for testing if its working fine.
The infosec team in my firm is telling me that if the connection is proxied (no other attacking thing), then the application will be getting another certificate from the proxy server and the app should alert about this.
But the above plugin tells me that the connection is secure even on proxied connections.
Pls help! Thanks!
No responses yet.