[SSL Pinning Plugin] generate hashes with SHA 512

Back to Forums

Mohammad Hasib

Question

Forge

Plugin

SSL

Application Type

Mobile

Dear Team,

Our security team is recommneding to generate the Hash Key with SHA512 instead of SHA256.

Will it work if i will generate the belwo key with SHA512 ?

openssl x509 -in my-certificate.crt -pubkey -noout | openssl rsa -pubin -outform der | openssl dgst -sha256 -binary | openssl enc -base64

27 Sep 2024

Ricardo Silva

Hey @Mohammad Hasib,

It shouldn't work. If you check the plugin's documentation page, one of the requirements for the JSON configuration file is "Hashes have the prefix sha256/.".

Also, are you sure it's worth the change?

BR.

27 Sep 2024

Olivia Graciyna

You're right if the plugin specifically requires hashes with the prefix sha256/, then generating SHA-512 hashes won’t work as expected. The plugin is likely hardcoded to validate against SHA-256. Even if you generate a SHA-512 hash, the format and prefix mismatch will cause it to fail. Unless the plugin officially supports SHA-512, it's best to stick with SHA-256 as required. I hope it helps!

07 Aug 2025

Community GuidelinesBe kind and respectful, give credit to the original source of content, and search for duplicates before posting.

See the full guidelines