How should I do hostname validation when using JSSE?
Java 7 (and above) You can implicitly use the X509ExtendedTrustManager introduced in Java 7 using this (see this answer: SSLParameters sslParams = new SSLParameters(); sslParams.setEndpointIdentificationAlgorithm(“HTTPS”); sslSocket.setSSLParameters(sslParams); // also works on SSLEngine Android I’m less familiar with Android, but Apache HTTP Client should be bundled with it, so it’s not really an additional library. As such, … Read more