Help Center/ Cloud Certificate Manager/ Product Bulletin/ [September 13, 2022] SSL Certificate Chains Embedded in Applications May Cause Communication Failures

Updated on 2023-10-20 GMT+08:00

View PDF

[September 13, 2022] SSL Certificate Chains Embedded in Applications May Cause Communication Failures

Dear customers,

If you have purchased GeoTrust DV (basic) certificates, do not embed the certificate file (server certificate, intermediate certificate, or root certificate) in your application during the development. Embedding SSL certificates in an application has the following impacts:

Server certificates: From September 1, 2020, only one-year SSL certificate can be issued by global CAs. The application will fail to communicate with the client when the server certificate embedded expires and is replaced by a new one.
Intermediate certificates and root certificates: Intermediate certificates and root certificates may become invalid, expire, or have policies changed due to CA system updates. The application will fail to communicate with the client if the intermediate certificates and root certificates embedded are updated.

To avoid these impacts, remove the embedded certificates from your Android applications in a proper, timely manner and use the built-in trust store for verification.

To get technical support on how to check whether there is a certificate embedded in an Android application, submit a service ticket. To do so, in the upper right corner of the Huawei Cloud management console, choose Service Tickets > Create Service Ticket.

If you have any questions during this period, please feel free to contact us.

Thank you for using Huawei Cloud.

Previous topic: [December 16, 2022] DigiCert and GeoTrust Suspend OV and EV Certificate Validation During Christmas Holidays

Next topic: [July 25, 2022] Organization Unit (OU) Field Removed from SSL Certificates