Skip to content
Latchkey

What Is Certificate Pinning?

Certificate pinning is a security technique where a client is configured to trust only a specific certificate or public key for a given server, rather than any certificate signed by a trusted authority. If the presented certificate does not match the pin, the client refuses the connection. This narrows trust to keys the application explicitly expects.

Why it matters

Standard validation trusts any certificate from a recognized authority, so a mis-issued or compromised authority can enable interception. Pinning rejects those, hardening apps against man-in-the-middle attacks, at the cost of careful key-rotation handling.

Related guides

Tired of flaky CI? Latchkey auto-heals failed jobs and retries them for you. Start free →