Запитання 14
Which approach correctly implements certificate pinning for API calls handling PHI in a React Native app?
Варіанти відповідей
Hardcoding the API's IP address instead of using a domain name
Using a native networking layer/library (e.g., `react-native-ssl-pinning`, or a custom Expo Module wrapping `URLSession`/`OkHttp` pinning config) that validates the server's certificate or public key hash against a pinned value before completing the TLS handshake
Setting `rejectUnauthorized: false` in the fetch configuration
Storing the API's SSL certificate in `AsyncStorage` and comparing it manually after each response