Answer the question
In order to leave comments, you need to log in
How to organize server SSL certificate verification on the device?
There is an iron device communicating with the REST API via HTTPS. The server has a normal certificate issued by Comodo. How to properly organize certificate verification on the device in the long run?
You can throw a Comodo certificate on the Root device and check it, but
Answer the question
In order to leave comments, you need to log in
If you have "pieces of iron" that will later be difficult to update, then it's better to file your certification authority and a self-signed certificate + get the opportunity to file the authorization of pieces of iron according to client certificates and the ability to cut off access if something went wrong :)
And the best way is not reinvent the wheel and provide for the possibility of updating the hardware by the user and, if necessary, updating certificates / software / etc
Well, it's not clear what you mean by "device".
We sawed terminals on raspberries and sawed exactly the self-signed one with authorization by client certificates, because the API for WEB and hardware owners was different in terms of functionality.
Issue using HTTPS in ESP8266 and ESP32
https://www.youtube.com/watch?v=Wm1xKj4bKsY
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question