It's not working because the server is not configured to include the intermediate CA "InnoSSL TrustSign DV Certification Authority"
$ openssl s_client -connect scert.shinhan.com:443" --- Certificate chain 0 s:/OU=Domain Control Validated/OU=Hosted by Dotname Korea Corp./OU=PositiveSSL Wildcard/CN=*.shinhan.com i:/C=KR/O=Dotname Korea Corp./CN=InnoSSL TrustSign DV Certification Authority --- $ -bri On Sat, Apr 27, 2013 at 6:28 AM, 류수원 <[email protected]> wrote: > Thanks for your reply. > > I thought that CA not include. > Because when I was connect the url "https://scert.shinhan.com"; using > DefaultHttpClient, > occur "javax.net.ssl.SSLPeerUnverifiedException: No peer certificate" > > Then why next code occur Exception : > javax.net.ssl.SSLPeerUnverifiedException: No peer certificate ? > > [code] > try { > DefaultHttpClient client = new DefaultHttpClient(); > HttpGet get = new HttpGet("https://scert.shinhan.com";); > HttpResponse response = client.execute( get ); > System.out.println( EntityUtils.toString( response.getEntity() ) ); > } catch(Exception e) { > e.printStackTrace(); > } > > On Monday, April 15, 2013 2:48:51 PM UTC+9, Brian Carlstrom wrote: >> >> I don't know what you mean. That CA (details below) seems to have been >> included since Android 1.5 (Cupcake). Since Android 4.0 >> (IceCreamSandwich) you can use Settings > Trusted Credentials to >> confirm what is included, >> >> -bri >> >> Subject: C=SE, O=AddTrust AB, OU=AddTrust External TTP Network, >> CN=AddTrust External CA Root >> SHA1 >> fingerprint=02:FA:F3:E2:91:43:54:68:60:78:57:69:4D:F5:E4:5B:68:85:18:68 >> >> >> >> On Sun, Apr 14, 2013 at 7:25 PM, 류수원 <[email protected]> wrote: >> > why android does not include AddTrust External CA Root ? >> > >> > -- >> > You received this message because you are subscribed to the Google >> > Groups >> > "Android Security Discussions" group. >> > To unsubscribe from this group and stop receiving emails from it, send >> > an >> > email to [email protected]. >> > To post to this group, send email to >> > [email protected]. >> > Visit this group at >> > http://groups.google.com/group/android-security-discuss?hl=en. >> > For more options, visit https://groups.google.com/groups/opt_out. >> > >> > > > -- > You received this message because you are subscribed to the Google Groups > "Android Security Discussions" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to > [email protected]. > Visit this group at > http://groups.google.com/group/android-security-discuss?hl=en. > For more options, visit https://groups.google.com/groups/opt_out. > > -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
