Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1232
  • Last Modified:

How to automatically "trust" an untrusted certificate on android?

Gurus,

I've been using an application on the android for a year or so and the manufacturer changed their "certificate" - now it won't work because it's "untrusted".  (I noticed this in a error log file).

How can I configure my android phone to automatically trust this certificate?  I'm using a Motorola Droid with android version 2.2.3

Thanks in advance!
0
SStroz
Asked:
SStroz
1 Solution
 
Dejan PažinHead of SW DevelopmentCommented:
You should uninstall the old version of the app and then install the new one.
0
 
SStrozAuthor Commented:
dejanpazin,

Thanks for the suggestion.  I did try that and it didn't work.

Any other suggestions?
0
 
ParanormasticCryptographic EngineerCommented:
http://support.google.com/android/bin/answer.py?hl=en&answer=1649774

Note: It is common to receive a Base64 encoded certificate - if you look at it in notepad it will be multiple rows, most of which will be of uniform length.  All characters should appear on your keyboard.  The article is mentioning that you need DER certificates, which if you look at one it will have all kinds of crazy characters and lots of spaces, and some values like the name may be in plain text.

You can easily convert a base64 (PEM) certificate file to DER with the following command on any windows box newer than XP
From a cmd box:
cd to the directory where the certificate file is saved
certutil -decode FILENAME.cer FILENAME_DER.cer

For any Windows OS, you could open the cert and view the Details tab and 'copy to file' and choose the defaults to make a new file (one of the defaults is the option to select DER instead of other options like Base64).


There are also other 3rd party apps that can help, too, such as this one:
https://play.google.com/store/apps/details?id=it.nicola_amatucci.android.certificate_installer&hl=en

If all else fails, try contacting the software vendor for assistance.  You might also provide feedback to recommend that they use a certificate provider that is more compatible in the mobile market.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now