I have a client-server model.
The server generated a key pair and shipped public keys to all the clients. In order to confirm the server is the real server I gonna to make connection to, I want to establish an HTTPS connection by the server public key to that specific server.
How can I do that? Or is there any better way to authenticate the server?
This is the first time I ask at stackoverflow. So, if you have any suggestion please don't hesitate to tell me. Thank you.
PS: Source code is written in C#.
答案 0 :(得分:0)
我认为我需要的是“证书和公钥固定”这个词。
https://www.owasp.org/index.php/Certificate_and_Public_Key_Pinning