security

Certificate Pinning

Definition

Certificate pinning is a technique where a client hard-codes the expected certificate or public key for a specific server, rejecting TLS connections that present a different certificate even if it is signed by a trusted CA. It prevents man-in-the-middle attacks via rogue or compromised certificate authorities.

Mobile apps commonly pin certificates to protect API communications against interception.

Related Terms

TLS

Transport Layer Security

PKI

Public Key Infrastructure

mTLS

Mutual TLS

← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product