5 Application Security Configuration

This topic provides information on Application Security Configuration.

For Device Integrity Check Ensure Section 2 is completed.

1. We also have to maintain package name of Servicing app.

   Please maintain this in respective System Configuration properties mentioned on section 10.

   SSL Pinning

2. Get the list of Base 64 encoded SHA256 hashed certificates' public keys of server’s valid certificates. Use below command to generate this hash for your certificate. Replace '<certificate.der>' with the path to your certificate.

   openssl x509 -inform der -in <certificate.der> -pubkey -noout | openssl pkey -pubin -outform der | openssl dgst -sha256 -binary | openssl enc -base64.

3. Add the hashed keys generated in point 6 to zigbank\platforms\android\customizations\src\main\res\values\app.properties.xml file in ‘certificate_public_keys’ array. Append this key to ‘sha256/’ in an <item> tag as shown below. Multiple certificate keys can be added to ‘certificate_public_keys’ array by adding them in <item> tags.

Example:

<string-array name="certificate_public_keys">

    <item>sha256/5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=</item>

</string-array>

Example: for multiple certificates:

<string-array name="certificate_public_keys">

    <item>sha256/5kJvNEMw0KjrCAu7eXY5HZdvyCS13BbA0VJG1RSP91w=</item><item>sha256/3rgsgghoqrDegekpkkgk92Fgw1w7exyYCS1okef9Oo1w=</item>

</string-array>