Closed Bascy closed 8 months ago
I would look for a common root certificate and use that or if there is no single common root then create a structure which contains multiple certs and can try different ones until finding the correct one. E.g lets encrypt free certs have a common root cert. Beware of memory consumption...
Ok, so essentially trial and error ;) Given a certificate and a url, what is the fastest way to check if they match?
Click on the padlock in browser address bar for website and have a look at the cert chain - follow it back a step or two to the root cert
In our ESP32 framework we have an function that is used for sending generic HTTP and HTTPS requests, we have similar implementations for Ethernet connections and for connections via a Sim7600 gsm module.
To actually use secure communication in case of an https request, I should set a CAcertificate .. but what certificate should I set if the server in the request can vary?
I'm not very skilled in secure communications, so any suggestions are welcome