Tweet
Users of BetOnDroid reported a strange authorization issue trying to login to Betfair. All of them uses old Android phones (Google Nexus 4/Android 5.xx).
After investigation I have found the host identitysso-cert.betfair.com uses certificates chain signed by IdenTrust. But it looks like IdenTrust Secure provide quet young. And old phones doesnt have IdentTrust trusted certificate in the certificates store. Thats why TLS Handshake is failed.
Did somebody faced same issue or my investigation is wrong?
Subject C = US, O = IdenTrust, CN = IdenTrust Commercial Root CA 1
Issuer: C = US, O = IdenTrust, CN = IdenTrust Commercial Root CA 1
a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256
v:NotBefore: Jan 16 18:12:23 2014 GMT; NotAfter: Jan 16 18:12:23 2034 GMT
After investigation I have found the host identitysso-cert.betfair.com uses certificates chain signed by IdenTrust. But it looks like IdenTrust Secure provide quet young. And old phones doesnt have IdentTrust trusted certificate in the certificates store. Thats why TLS Handshake is failed.
Did somebody faced same issue or my investigation is wrong?
Subject C = US, O = IdenTrust, CN = IdenTrust Commercial Root CA 1
Issuer: C = US, O = IdenTrust, CN = IdenTrust Commercial Root CA 1
a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256
v:NotBefore: Jan 16 18:12:23 2014 GMT; NotAfter: Jan 16 18:12:23 2034 GMT