[September 13, 2022] SSL Certificate Chains Embedded in Applications May Cause Communication Failures
Dear customers,
If you have purchased GeoTrust DV (basic) certificates, do not embed the certificate file (server certificate, intermediate certificate, or root certificate) in your application during the development. Embedding SSL certificates in an application has the following impacts:
- Server certificates: From September 1, 2020, only one-year SSL certificate can be issued by global CAs. The application will fail to communicate with the client when the server certificate embedded expires and is replaced by a new one.
- Intermediate certificates and root certificates: Intermediate certificates and root certificates may become invalid, expire, or have policies changed due to CA system updates. The application will fail to communicate with the client if the intermediate certificates and root certificates embedded are updated.
To avoid these impacts, remove the embedded certificates from your Android applications in a proper, timely manner and use the built-in trust store for verification.
To get technical support on how to check whether there is a certificate embedded in an Android application, submit a service ticket. To do so, in the upper right corner of the Huawei Cloud management console, choose Service Tickets > Create Service Ticket.
If you have any questions during this period, please feel free to contact us.
Thank you for using Huawei Cloud.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot