July 17, 2014 |
We found a workaround for this issue and pushed a patched version (1.0.9) to Google Play. Installation of this version should eliminate the condition preventing connection to our servers on 2.3.x and lower devices.
If you are still unable to connect please let us know at firstname.lastname@example.org
On Saturday, July 16, 2014 the PulsePoint foundation installed new 2048-bit key length SSL certificates on all its servers (existing 1024-bit certificates were expiring).
Older Android devices (running 2.3.x Gingerbread and earlier) are not able to support these 2048-bit SSL certificates with some applications (users may be able to ignore the certificates in a browser but not in PulsePoint). The deprecation of 1024-bit RSA is an industry-wide effort.
A new Standard for SSL Certificates (industry standards set by the Certification Authority/Browser (CA/B) Forum) require that certificates issued after January 1, 2014 MUST be at least 2048-bit key length. The cybersecurity industry is moving to stronger 2048-bit encryption to help preserve internet security.
It will likely take a phone upgrade to resolve this issue but the foundation continues to explore other options.
Also important to note is that the foundation is preparing to release a significant new Android version soon that will require a minimum OS version of 3.0 (Honeycomb).