diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 56236e8f1b87d169815d348f24eade1579ff5a1b..26cab5b72114748a0b0b1dc63b9ff73ec4ecfbdc 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -15,4 +15,4 @@ cache:
 build:
   stage: build
   script:
-  - ./gradlew build
\ No newline at end of file
+  - ./gradlew build
diff --git a/README.md b/README.md
index 316f7aaa36601dc07b670a36468751a200a225a1..7833b210977b633b27d4a296cd5d16cca8a520ec 100644
--- a/README.md
+++ b/README.md
@@ -4,13 +4,16 @@
 
 # cert4android
 
-cert4android is an Android library for managing custom certificates which has
-been developed for [DAVdroid](https://davdroid.bitfire.at). Feel free to use
+cert4android is a library for Android to manage custom certificates which has
+been developed for [DAVx⁵](https://www.davx5.com). Feel free to use
 it in your own open-source app.
 
+_This software is not affiliated to, nor has it been authorized, sponsored or otherwise approved
+by Google LLC. Android is a trademark of Google LLC._
+
 Generated KDoc: https://bitfireat.gitlab.io/cert4android/dokka/cert4android/
 
-Discussion: https://forums.bitfire.at/category/7/transport-level-security
+Discussion: https://forums.bitfire.at/category/18/libraries
 
 
 # Features
@@ -31,11 +34,40 @@ Discussion: https://forums.bitfire.at/category/7/transport-level-security
 1. Close the instance when it's not required anymore (will disconnect from the
    `CustomCertService`, thus allowing it to be destroyed).
 
+Example of initialzing an okhttp client:
+
+    val keyManager = ...
+    CustomCertManager(...).use { trustManager ->
+        val sslContext = SSLContext.getInstance("TLS")
+        sslContext.init(
+            if (keyManager != null) arrayOf(keyManager) else null,
+            arrayOf(trustManager),
+            null
+        )
+        val builder = OkHttpClient.Builder()
+        builder.sslSocketFactory(sslContext.socketFactory, trustManager)
+               .hostnameVerifier(hostnameVerifier)
+        val httpClient = builder.build()
+        // use httpClient
+    }
+
+
 You can overwrite resources when you want, just have a look at the `res/strings`
 directory. Especially `certificate_notification_connection_security` and
 `trust_certificate_unknown_certificate_found` should contain your app name.
 
 
+## Contact
+
+```
+bitfire web engineering – Stockmann, Hirner GesnbR
+Florastraße 27
+2540 Bad Vöslau, AUSTRIA
+```
+
+Email: [play@bitfire.at](mailto:play@bitfire.at) (do not use this)
+
+
 # License 
 
 Copyright (C) bitfire web engineering (Ricki Hirner, Bernhard Stockmann).
diff --git a/build.gradle b/build.gradle
index 59642d91b9ce71ce4f050c733a97e242c101a7f3..6dc87f67c59d73571c96e845682cfb3e2c218a63 100644
--- a/build.gradle
+++ b/build.gradle
@@ -1,7 +1,10 @@
 
 buildscript {
-    ext.kotlin_version = '1.3.10'
-    ext.dokka_version = '0.9.17'
+    ext.versions = [
+        kotlin: '1.3.61',
+        dokka: '0.10.0',
+        conscrypt: '2.2.1'
+    ]
 
     repositories {
         google()
@@ -9,9 +12,9 @@ buildscript {
     }
 
     dependencies {
-        classpath 'com.android.tools.build:gradle:3.2.1'
-        classpath "org.jetbrains.kotlin:kotlin-gradle-plugin:$kotlin_version"
-        classpath "org.jetbrains.dokka:dokka-android-gradle-plugin:${dokka_version}"
+        classpath 'com.android.tools.build:gradle:3.5.3'
+        classpath "org.jetbrains.kotlin:kotlin-gradle-plugin:${versions.kotlin}"
+        classpath "org.jetbrains.dokka:dokka-gradle-plugin:${versions.dokka}"
     }
 }
 
@@ -22,35 +25,58 @@ repositories {
 
 apply plugin: 'com.android.library'
 apply plugin: 'kotlin-android'
-apply plugin: 'org.jetbrains.dokka-android'
+apply plugin: 'org.jetbrains.dokka'
 
 android {
-    compileSdkVersion 27
-    buildToolsVersion '27.1.1'
+    compileSdkVersion 29
+    buildToolsVersion '29.0.2'
 
     defaultConfig {
-        minSdkVersion 24
-        targetSdkVersion 27
+        minSdkVersion 14
+        targetSdkVersion 29
     }
 
+    compileOptions {
+        sourceCompatibility JavaVersion.VERSION_1_8
+        targetCompatibility JavaVersion.VERSION_1_8
+    }
+
+    dataBinding.enabled = true
+
     lintOptions {
         disable 'MissingTranslation', 'ExtraTranslation'	// translations from Transifex are not always up to date
         disable "OnClick"     // doesn't recognize Kotlin onClick methods
     }
 
     defaultConfig {
-        testInstrumentationRunner "android.support.test.runner.AndroidJUnitRunner"
+        testInstrumentationRunner "androidx.test.runner.AndroidJUnitRunner"
+    }
+
+    dokka.configuration {
+        sourceLink {
+            url = "https://gitlab.com/bitfireAT/cert4android/tree/master/"
+            lineSuffix = "#L"
+        }
+        jdkVersion = 7
     }
 }
 
 dependencies {
-    implementation "org.jetbrains.kotlin:kotlin-stdlib-jdk7:$kotlin_version"
+    implementation "org.jetbrains.kotlin:kotlin-stdlib-jdk8:${versions.kotlin}"
 
-    implementation 'com.android.support:appcompat-v7:27.1.1'
-    implementation 'com.android.support:cardview-v7:27.1.1'
+    implementation 'androidx.appcompat:appcompat:1.1.0'
+    implementation 'androidx.cardview:cardview:1.0.0'
+    implementation 'androidx.lifecycle:lifecycle-extensions:2.1.0'
+    implementation 'androidx.lifecycle:lifecycle-livedata:2.1.0'
+    implementation 'androidx.lifecycle:lifecycle-viewmodel-ktx:2.1.0'
+    implementation 'com.google.android.material:material:1.2.0-alpha03'
+    implementation "org.conscrypt:conscrypt-android:${versions.conscrypt}"
 
-    androidTestImplementation 'com.android.support.test:runner:1.0.2'
-    androidTestImplementation 'com.android.support.test:rules:1.0.2'
+    androidTestImplementation 'androidx.test:runner:1.2.0'
+    androidTestImplementation 'androidx.test:rules:1.2.0'
+    androidTestImplementation 'com.squareup.okhttp3:mockwebserver:3.12.5'
+    androidTestImplementation 'commons-io:commons-io:2.6'
+    androidTestImplementation 'org.apache.commons:commons-lang3:3.9'
 
     testImplementation 'junit:junit:4.12'
 }
diff --git a/gradle.properties b/gradle.properties
index 8bd86f6805108dec87d0be823bdb1384bec8aa19..d9cf55df7c1945850a53322a299a58f4b3229097 100644
--- a/gradle.properties
+++ b/gradle.properties
@@ -1 +1,2 @@
 org.gradle.jvmargs=-Xmx1536M
+android.useAndroidX=true
diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties
index 5801d8e8035b2cc3012598ce30a163b41d437654..dcc77281b370672855b0e5f012b67acf3db3e2a6 100644
--- a/gradle/wrapper/gradle-wrapper.properties
+++ b/gradle/wrapper/gradle-wrapper.properties
@@ -1,6 +1,6 @@
-#Tue Aug 23 16:42:17 CEST 2016
+#Wed Apr 17 22:31:47 CEST 2019
 distributionBase=GRADLE_USER_HOME
 distributionPath=wrapper/dists
 zipStoreBase=GRADLE_USER_HOME
 zipStorePath=wrapper/dists
-distributionUrl=https\://services.gradle.org/distributions/gradle-4.8-all.zip
+distributionUrl=https\://services.gradle.org/distributions/gradle-5.5.1-all.zip
diff --git a/project.properties b/project.properties
deleted file mode 100644
index 2e788c3f757545052172df570928924dbd0827d5..0000000000000000000000000000000000000000
--- a/project.properties
+++ /dev/null
@@ -1,3 +0,0 @@
-
-android.library=true
-
diff --git a/src/androidTest/java/foundation/e/cert4android/CustomCertManagerTest.kt b/src/androidTest/java/foundation/e/cert4android/CustomCertManagerTest.kt
index e05b6ff8a905c9f7c298d8e16048725f01e67da8..0a5137aa2aa1b32d620ac53f51deb953f0382940 100644
--- a/src/androidTest/java/foundation/e/cert4android/CustomCertManagerTest.kt
+++ b/src/androidTest/java/foundation/e/cert4android/CustomCertManagerTest.kt
@@ -11,9 +11,8 @@ package foundation.e.cert4android
 import android.app.Service
 import android.content.Intent
 import android.os.IBinder
-import android.support.test.InstrumentationRegistry.getContext
-import android.support.test.InstrumentationRegistry.getTargetContext
-import android.support.test.rule.ServiceTestRule
+import androidx.test.platform.app.InstrumentationRegistry.getInstrumentation
+import androidx.test.rule.ServiceTestRule
 import org.junit.After
 import org.junit.Assert.assertNotNull
 import org.junit.Assume.assumeNotNull
@@ -70,12 +69,13 @@ class CustomCertManagerTest {
         val binder = bindService(CustomCertService::class.java)
         assertNotNull(binder)
 
-        CustomCertManager.resetCertificates(getContext())
+        val context = getInstrumentation().context
+        CustomCertManager.resetCertificates(context)
 
-        certManager = CustomCertManager(getContext(), false)
+        certManager = CustomCertManager(context, false)
         assertNotNull(certManager)
 
-        paranoidCertManager = CustomCertManager(getContext(), false, false)
+        paranoidCertManager = CustomCertManager(context, false, false)
         assertNotNull(paranoidCertManager)
     }
 
@@ -114,7 +114,7 @@ class CustomCertManagerTest {
 
         // remove certificate and check again
         // should now be rejected for the whole session, i.e. no timeout anymore
-        val intent = Intent(getContext(), CustomCertService::class.java)
+        val intent = Intent(getInstrumentation().context, CustomCertService::class.java)
         intent.action = CustomCertService.CMD_CERTIFICATION_DECISION
         intent.putExtra(CustomCertService.EXTRA_CERTIFICATE, siteCerts!!.first().encoded)
         intent.putExtra(CustomCertService.EXTRA_TRUSTED, false)
@@ -124,7 +124,7 @@ class CustomCertManagerTest {
 
     private fun addCustomCertificate() {
         // add certificate and check again
-        val intent = Intent(getContext(), CustomCertService::class.java)
+        val intent = Intent(getInstrumentation().context, CustomCertService::class.java)
         intent.action = CustomCertService.CMD_CERTIFICATION_DECISION
         intent.putExtra(CustomCertService.EXTRA_CERTIFICATE, siteCerts!!.first().encoded)
         intent.putExtra(CustomCertService.EXTRA_TRUSTED, true)
@@ -133,10 +133,10 @@ class CustomCertManagerTest {
 
 
     private fun bindService(clazz: Class<out Service>): IBinder {
-        var binder = serviceTestRule.bindService(Intent(getTargetContext(), clazz))
+        var binder = serviceTestRule.bindService(Intent(getInstrumentation().targetContext, clazz))
         var it = 0
         while (binder == null && it++ <100) {
-            binder = serviceTestRule.bindService(Intent(getTargetContext(), clazz))
+            binder = serviceTestRule.bindService(Intent(getInstrumentation().targetContext, clazz))
             System.err.println("Waiting for ServiceTestRule.bindService")
             Thread.sleep(50)
         }
diff --git a/src/androidTest/resources/sample.crt b/src/androidTest/resources/sample.crt
new file mode 100644
index 0000000000000000000000000000000000000000..c8139807ced56b2a9859a38e7180dc87d07ab1d6
--- /dev/null
+++ b/src/androidTest/resources/sample.crt
@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----
+MIIEEzCCAfsCAQEwDQYJKoZIhvcNAQEFBQAwRjELMAkGA1UEBhMCQ0ExEzARBgNV
+BAgMClNvbWUtU3RhdGUxEDAOBgNVBAoMB0NBIENlcnQxEDAOBgNVBAMMB0NBIENl
+cnQwHhcNMTgwMTEzMjAyOTI5WhcNMTkwMTEzMjAyOTI5WjBZMQswCQYDVQQGEwJD
+QTETMBEGA1UECAwKU29tZS1TdGF0ZTEhMB8GA1UECgwYSW50ZXJuZXQgV2lkZ2l0
+cyBQdHkgTHRkMRIwEAYDVQQDDAlVc2VyIENlcnQwggEiMA0GCSqGSIb3DQEBAQUA
+A4IBDwAwggEKAoIBAQDqOyHAeG4psE/f6i/eTfwbhn6j7WaFXxZiSOWwpQZmzRrx
+MrfkABJCk0X7KNgCaJcmBkG9G1Ri4HfKrxvJFswMXknlq+0ulGBk7oDnZM+pihuX
+3D9VCWMMkCqYhLCGADj2zB2mkX4LpcMRi6XoOetKURE/vcIy7rSLAtJM6ZRdftfh
+2ZxnautS1Tyujh9Au3NI/+Of80tT/nA+oBJQeT1fB/ga1OQlZP5kjSaA7IPiIbTz
+QBO+r898MvqK/lwsvOYnWAp7TY03z+vPfCs0zjijZEl9Wrl0hW6o5db5kU1v5bcr
+p87hxFJsGD2HIr2y6kvYfL2hn+h9iANyYdRnUgapAgMBAAEwDQYJKoZIhvcNAQEF
+BQADggIBAHANsiJITedXPyp89lVMEmGY3zKtOqgQ3tqjvjlNt2sdPnj7wmZbmrNd
+sa90S/UwOn8PzEFOVxYy1BPlljlEjtjmc4OHMcm4P4Zv36uawHilmK8V+zT59gCK
+ftB5FP2TLFUFi2X9o8J06d0xJRE77uewN155NV4RmPuP4b/tMmeixoQppHqLqEr5
+lgEUnt3Mh1ctmeFQFJR6lJ01hlB0gdpVHIhzrVLTO3uo8ePLJTmxP6tyKl/HXj9F
+mpVsKb1kriKwbkGczfw99OUZeUVbTwQOR07r0SrG71B7IuDvxIORnhQc1OUjt7ob
+wjdaZauAHxpGBRu+hw9Yqaxchk9Gldy1nEjGyyVCD0FU5taXbl8PhBWEDc4U9tI+
+xVNmPpsSuCsbz3Mjd1YIVRGL99vLrKsQcj+TNM+jJKKRKes3ihl+l/0FwG6UuO7L
+EvjlUg5hOtYi1D7xuYyMjroGBGh7swYMt6w4eCDbcjzcCkaCi0H2pScM/rLBpDjS
+LIoGCvZ1LBdi933/iOj1/8dxGZwY6fEgcyiD2n0xAgYIniLWjEZXOMdIK5FNTNga
+Tswanvp+6Noa4oIu/hl/LXvPMsouaWfSEbRe0Dshi3GpLj3YtEHoN9DHB8bn7jy5
+34By81GT41m5kq3hWP//x9kSHYSADpbovCbKbElU1qSt6vTVR4nq
+-----END CERTIFICATE-----
diff --git a/src/androidTest/resources/sample.key b/src/androidTest/resources/sample.key
new file mode 100644
index 0000000000000000000000000000000000000000..af8f903d41f5948cda0eb46c3f471d2ed013a099
Binary files /dev/null and b/src/androidTest/resources/sample.key differ
diff --git a/src/main/AndroidManifest.xml b/src/main/AndroidManifest.xml
index 2b10628355238232672abaf38cd2079b35fa68fc..d90966e8dd2b0125a56b1173b14a25bca257ba3d 100644
--- a/src/main/AndroidManifest.xml
+++ b/src/main/AndroidManifest.xml
@@ -1,5 +1,6 @@
 <?xml version="1.0" encoding="utf-8"?>
 <manifest xmlns:android="http://schemas.android.com/apk/res/android"
+	xmlns:tools="http://schemas.android.com/tools"
 	package="foundation.e.cert4android">
 
     <application>
diff --git a/src/main/java/foundation/e/cert4android/CustomCertManager.kt b/src/main/java/foundation/e/cert4android/CustomCertManager.kt
index 17255304a36497bfbbb6beefe2162018c4bfa8f7..d8c58f87dbd26fb856446d03f6b06922d12349e2 100644
--- a/src/main/java/foundation/e/cert4android/CustomCertManager.kt
+++ b/src/main/java/foundation/e/cert4android/CustomCertManager.kt
@@ -34,6 +34,7 @@ import javax.net.ssl.X509TrustManager
  * @param interactive true: users will be notified in case of unknown certificates;
  *                    false: unknown certificates will be rejected (only uses custom certificate key store)
  * @param trustSystemCerts whether system certificates will be trusted
+ * @param appInForeground  Whether to launch [TrustCertificateActivity] directly. The notification will always be shown.
  *
  * @constructor Creates a new instance, using a certain [CustomCertService] messenger (for testing).
  * Must not be run from the main thread because this constructor may request binding to [CustomCertService].
@@ -45,7 +46,10 @@ import javax.net.ssl.X509TrustManager
 class CustomCertManager @JvmOverloads constructor(
         val context: Context,
         val interactive: Boolean = true,
-        trustSystemCerts: Boolean = true
+        trustSystemCerts: Boolean = true,
+
+        @Volatile
+        var appInForeground: Boolean = false
 ): X509TrustManager, Closeable {
 
     companion object {
@@ -62,7 +66,7 @@ class CustomCertManager @JvmOverloads constructor(
     }
 
     var service: ICustomCertService? = null
-    private var serviceConnection: ServiceConnection?
+    private var serviceConn: ServiceConnection? = null
     private var serviceLock = Object()
 
     /** system-default trust store */
@@ -70,12 +74,8 @@ class CustomCertManager @JvmOverloads constructor(
             if (trustSystemCerts) CertUtils.getTrustManager(null) else null
 
 
-    /** Whether to launch [TrustCertificateActivity] directly. The notification will always be shown. */
-    var appInForeground = false
-
-
     init {
-        serviceConnection = object: ServiceConnection {
+        val newServiceConn = object: ServiceConnection {
             override fun onServiceConnected(className: ComponentName, binder: IBinder) {
                 Constants.log.fine("Connected to service")
                 synchronized(serviceLock) {
@@ -91,12 +91,15 @@ class CustomCertManager @JvmOverloads constructor(
             }
         }
 
-        if (Looper.myLooper() == Looper.getMainLooper())
+        check(Looper.myLooper() != Looper.getMainLooper()) {
             // service is actually created after bindService() by code running in looper, so this would block
-            throw IllegalStateException("must not be run on main thread")
+            "must not be run on main thread"
+        }
 
         Constants.log.fine("Binding to service")
-        if (context.bindService(Intent(context, CustomCertService::class.java), serviceConnection, Context.BIND_AUTO_CREATE)) {
+        if (context.bindService(Intent(context, CustomCertService::class.java), newServiceConn, Context.BIND_AUTO_CREATE)) {
+            serviceConn = newServiceConn
+
             Constants.log.fine("Waiting for service to be bound")
             synchronized(serviceLock) {
                 while (service == null)
@@ -110,10 +113,10 @@ class CustomCertManager @JvmOverloads constructor(
     }
 
     override fun close() {
-        serviceConnection?.let {
+        serviceConn?.let {
             try {
                 context.unbindService(it)
-                serviceConnection = null
+                serviceConn = null
             } catch (e: Exception) {
                 Constants.log.log(Level.WARNING, "Couldn't unbind CustomCertService", e)
             }
diff --git a/src/main/java/foundation/e/cert4android/CustomCertService.kt b/src/main/java/foundation/e/cert4android/CustomCertService.kt
index 210e0ab06b0d8293b2b284e191af6fc43d2ef65b..064cf246d4ed325b7c5a04f90a968973a930bfa2 100644
--- a/src/main/java/foundation/e/cert4android/CustomCertService.kt
+++ b/src/main/java/foundation/e/cert4android/CustomCertService.kt
@@ -12,23 +12,27 @@ import android.app.PendingIntent
 import android.app.Service
 import android.content.Context
 import android.content.Intent
-import android.support.v4.app.NotificationCompat
+import android.util.Log
 import android.widget.Toast
+import androidx.core.app.NotificationCompat
+import org.conscrypt.Conscrypt
 import java.io.ByteArrayInputStream
 import java.io.File
 import java.io.FileInputStream
 import java.io.FileOutputStream
 import java.security.KeyStore
 import java.security.KeyStoreException
+import java.security.Security
 import java.security.cert.CertificateFactory
 import java.security.cert.X509Certificate
 import java.util.*
 import java.util.logging.Level
+import javax.net.ssl.SSLContext
 import javax.net.ssl.X509TrustManager
 
 /**
  * The service which manages the certificates. Communications with
- * the [CustomCertManager]s over IPC.
+ * the [CustomCertManager]s over IPC. Initializes Conscrypt when class is loaded.
  *
  * This services is both a started and a bound service.
  */
@@ -51,6 +55,18 @@ class CustomCertService: Service() {
 
         const val KEYSTORE_DIR = "KeyStore"
         const val KEYSTORE_NAME = "KeyStore.bks"
+
+        init {
+            // initialize Conscrypt
+            Security.insertProviderAt(Conscrypt.newProvider(), 1)
+
+            val version = Conscrypt.version()
+            Log.i(Constants.TAG, "Using Conscrypt/${version.major()}.${version.minor()}.${version.patch()} for TLS")
+            val engine = SSLContext.getDefault().createSSLEngine()
+            Log.i(Constants.TAG, "Enabled protocols: ${engine.enabledProtocols.joinToString(", ")}")
+            Log.i(Constants.TAG, "Enabled ciphers: ${engine.enabledCipherSuites.joinToString(", ")}")
+        }
+
     }
 
     private lateinit var keyStoreFile: File
@@ -172,7 +188,7 @@ class CustomCertService: Service() {
 
     // bound service
 
-    val binder = object: ICustomCertService.Stub() {
+    private val binder = object: ICustomCertService.Stub() {
 
         override fun checkTrusted(raw: ByteArray, interactive: Boolean, foreground: Boolean, callback: IOnCertificateDecision) {
             val cert: X509Certificate? = try {
@@ -246,11 +262,7 @@ class CustomCertService: Service() {
 
         override fun abortCheck(callback: IOnCertificateDecision) {
             for ((cert, list) in pendingDecisions) {
-                val it = list.listIterator()
-                while (it.hasNext())
-                    if (it.next() == callback)
-                        it.remove()
-
+                list.removeAll { it == callback }
                 if (list.isEmpty())
                     pendingDecisions -= cert
             }
diff --git a/src/main/java/foundation/e/cert4android/NotificationUtils.kt b/src/main/java/foundation/e/cert4android/NotificationUtils.kt
index 0e8ab99d8e5fb5f3e6cef7b265ed80a379bde73b..31a15abc66684cb1efa78af5e2231c0bfa93135b 100644
--- a/src/main/java/foundation/e/cert4android/NotificationUtils.kt
+++ b/src/main/java/foundation/e/cert4android/NotificationUtils.kt
@@ -12,7 +12,7 @@ import android.app.NotificationChannel
 import android.app.NotificationManager
 import android.content.Context
 import android.os.Build
-import android.support.v4.app.NotificationManagerCompat
+import androidx.core.app.NotificationManagerCompat
 
 object NotificationUtils {
 
diff --git a/src/main/java/foundation/e/cert4android/TrustCertificateActivity.kt b/src/main/java/foundation/e/cert4android/TrustCertificateActivity.kt
index 072ff29d7a5d52f1953ffd4f3114edebcfcb3a46..e80930e58a11de1b215f08bd0d2f65b7bb1c668f 100644
--- a/src/main/java/foundation/e/cert4android/TrustCertificateActivity.kt
+++ b/src/main/java/foundation/e/cert4android/TrustCertificateActivity.kt
@@ -10,85 +10,49 @@ package foundation.e.cert4android
 
 import android.content.Intent
 import android.os.Bundle
-import android.support.v7.app.AppCompatActivity
 import android.view.View
-import android.widget.Button
-import android.widget.CheckBox
-import android.widget.TextView
+import androidx.appcompat.app.AppCompatActivity
+import androidx.databinding.DataBindingUtil
+import androidx.lifecycle.MutableLiveData
+import androidx.lifecycle.ViewModel
+import androidx.lifecycle.ViewModelProviders
+import foundation.e.cert4android.databinding.ActivityTrustCertificateBinding
 import java.io.ByteArrayInputStream
 import java.security.MessageDigest
 import java.security.cert.CertificateFactory
 import java.security.cert.CertificateParsingException
 import java.security.cert.X509Certificate
+import java.security.spec.MGF1ParameterSpec.SHA1
+import java.security.spec.MGF1ParameterSpec.SHA256
 import java.text.DateFormat
 import java.util.*
 import java.util.logging.Level
+import kotlin.concurrent.thread
 
 class TrustCertificateActivity: AppCompatActivity() {
 
     companion object {
         const val EXTRA_CERTIFICATE = "certificate"
-
-        val certFactory = CertificateFactory.getInstance("X.509")!!
     }
 
+    private lateinit var model: Model
 
     override fun onCreate(savedInstanceState: Bundle?) {
         super.onCreate(savedInstanceState)
 
-        setContentView(R.layout.activity_trust_certificate)
-        showCertificate()
+        model = ViewModelProviders.of(this).get(Model::class.java)
+        model.processIntent(intent)
+
+        val binding = DataBindingUtil.setContentView<ActivityTrustCertificateBinding>(this, R.layout.activity_trust_certificate)
+        binding.lifecycleOwner = this
+        binding.model = model
     }
 
     override fun onNewIntent(intent: Intent) {
         super.onNewIntent(intent)
-        this.intent = intent
-        showCertificate()
+        model.processIntent(intent)
     }
 
-    private fun showCertificate() {
-        val raw = intent.getByteArrayExtra(EXTRA_CERTIFICATE)
-        (certFactory.generateCertificate(ByteArrayInputStream(raw)) as X509Certificate?)?.let { cert ->
-            val subject: String
-            try {
-                subject = if (cert.issuerAlternativeNames != null) {
-                    val sb = StringBuilder()
-                    for (altName in cert.subjectAlternativeNames.orEmpty()) {
-                        val name = altName[1]
-                        if (name is String)
-                            sb.append("[").append(altName[0]).append("]").append(name).append(" ")
-                    }
-                    sb.toString()
-                } else
-                    cert.subjectDN.name
-
-                var tv = findViewById<TextView>(R.id.issuedFor)
-                tv.text = subject
-
-                tv = findViewById(R.id.issuedBy)
-                tv.text = cert.issuerDN.toString()
-
-                val formatter = DateFormat.getDateInstance(DateFormat.LONG)
-                tv = findViewById(R.id.validity_period)
-                tv.text = getString(R.string.trust_certificate_validity_period_value,
-                        formatter.format(cert.notBefore),
-                        formatter.format(cert.notAfter))
-
-                tv = findViewById(R.id.fingerprint_sha1)
-                tv.text = fingerprint(cert, "SHA-1")
-                tv = findViewById(R.id.fingerprint_sha256)
-                tv.text = fingerprint(cert, "SHA-256")
-            } catch(e: CertificateParsingException) {
-                Constants.log.log(Level.WARNING, "Couldn't parse certificate", e)
-            }
-        }
-
-        val btnAccept = findViewById<Button>(R.id.accept)
-        val cb = findViewById<CheckBox>(R.id.fingerprint_ok)
-        cb.setOnCheckedChangeListener { _, state -> btnAccept.isEnabled = state }
-    }
-
-
     fun acceptCertificate(view: View) {
         sendDecision(true)
         finish()
@@ -110,17 +74,70 @@ class TrustCertificateActivity: AppCompatActivity() {
     }
 
 
-    private fun fingerprint(cert: X509Certificate, algorithm: String) =
-            try {
-                val md = MessageDigest.getInstance(algorithm)
-                "$algorithm: ${hexString(md.digest(cert.encoded))}"
-            } catch(e: Exception) {
-                e.message ?: "Couldn't create message digest"
+    class Model: ViewModel() {
+
+        companion object {
+            val certFactory = CertificateFactory.getInstance("X.509")!!
+        }
+
+        val issuedFor = MutableLiveData<String>()
+        val issuedBy = MutableLiveData<String>()
+
+        val validFrom = MutableLiveData<String>()
+        val validTo = MutableLiveData<String>()
+
+        val sha1 = MutableLiveData<String>()
+        val sha256 = MutableLiveData<String>()
+
+        val verifiedByUser = MutableLiveData<Boolean>()
+
+        fun processIntent(intent: Intent?) {
+            intent?.getByteArrayExtra(EXTRA_CERTIFICATE)?.let { raw ->
+                thread {
+                    val cert = certFactory.generateCertificate(ByteArrayInputStream(raw)) as? X509Certificate ?: return@thread
+
+                    try {
+                        val subject = if (cert.issuerAlternativeNames != null) {
+                            val sb = StringBuilder()
+                            for (altName in cert.subjectAlternativeNames.orEmpty()) {
+                                val name = altName[1]
+                                if (name is String)
+                                    sb.append("[").append(altName[0]).append("]").append(name).append(" ")
+                            }
+                            sb.toString()
+                        } else
+                            cert.subjectDN.name
+                        issuedFor.postValue(subject)
+
+                        issuedBy.postValue(cert.issuerDN.toString())
+
+                        val formatter = DateFormat.getDateInstance(DateFormat.LONG)
+                        validFrom.postValue(formatter.format(cert.notBefore))
+                        validTo.postValue(formatter.format(cert.notAfter))
+
+                        sha1.postValue(fingerprint(cert, SHA1.digestAlgorithm))
+                        sha256.postValue(fingerprint(cert, SHA256.digestAlgorithm))
+
+                    } catch(e: CertificateParsingException) {
+                        Constants.log.log(Level.WARNING, "Couldn't parse certificate", e)
+                    }
+                }
             }
+        }
+
+        fun fingerprint(cert: X509Certificate, algorithm: String) =
+                try {
+                    val md = MessageDigest.getInstance(algorithm)
+                    "$algorithm: ${hexString(md.digest(cert.encoded))}"
+                } catch(e: Exception) {
+                    e.message ?: "Couldn't create message digest"
+                }
+
+        fun hexString(data: ByteArray): String {
+            val str = data.mapTo(LinkedList()) { String.format("%02x", it) }
+            return str.joinToString(":")
+        }
 
-    private fun hexString(data: ByteArray): String {
-        val str = data.mapTo(LinkedList()) { String.format("%02x", it) }
-        return str.joinToString(":")
     }
 
 }
diff --git a/src/main/res/layout/activity_trust_certificate.xml b/src/main/res/layout/activity_trust_certificate.xml
index e49d2905329073d871909d15a598149d5b23e982..9de00f0b4667ff4ade36b24ee48e7e0cfdeb443b 100644
--- a/src/main/res/layout/activity_trust_certificate.xml
+++ b/src/main/res/layout/activity_trust_certificate.xml
@@ -1,134 +1,145 @@
 <?xml version="1.0" encoding="utf-8"?>
-
-<ScrollView xmlns:android="http://schemas.android.com/apk/res/android"
-            xmlns:tools="http://schemas.android.com/tools"
-            xmlns:app="http://schemas.android.com/apk/res-auto"
-            android:layout_height="match_parent"
-            android:layout_width="match_parent"
-            android:layout_margin="@dimen/activity_margin">
-
-    <LinearLayout android:orientation="vertical"
-                  android:layout_width="match_parent"
-                  android:layout_height="wrap_content">
-
-        <TextView
-            android:layout_width="match_parent"
-            android:layout_height="wrap_content"
-            android:layout_marginBottom="16dp"
-            android:text="@string/trust_certificate_unknown_certificate_found"
-            android:textAppearance="?android:attr/textAppearanceMedium"/>
-
-        <android.support.v7.widget.CardView
+<layout xmlns:android="http://schemas.android.com/apk/res/android"
+        xmlns:tools="http://schemas.android.com/tools"
+        xmlns:app="http://schemas.android.com/apk/res-auto">
+
+    <data>
+        <variable
+            name="model"
+            type="foundation.e.cert4android.TrustCertificateActivity.Model"/>
+    </data>
+
+    <ScrollView
+        android:layout_height="match_parent"
+        android:layout_width="match_parent"
+        android:layout_margin="@dimen/activity_margin">
+
+        <LinearLayout android:orientation="vertical"
             android:layout_width="match_parent"
-            android:layout_height="wrap_content"
-            app:cardElevation="8dp">
+            android:layout_height="wrap_content">
 
-            <LinearLayout
+            <TextView
                 android:layout_width="match_parent"
                 android:layout_height="wrap_content"
-                android:orientation="vertical"
-                android:layout_margin="8dp">
+                android:layout_marginBottom="16dp"
+                android:text="@string/trust_certificate_unknown_certificate_found"
+                android:textAppearance="?android:attr/textAppearanceMedium"/>
 
-                <TextView
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    style="@style/TextView.Heading"
-                    android:layout_marginBottom="16dp"
-                    android:text="@string/trust_certificate_x509_certificate_details"/>
+            <com.google.android.material.card.MaterialCardView
+                android:layout_width="match_parent"
+                android:layout_height="wrap_content"
+                style="@style/Widget.MaterialComponents.CardView">
 
-                <TextView
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:textStyle="bold"
-                    android:text="@string/trust_certificate_issued_for"/>
-                <TextView
-                    android:id="@+id/issuedFor"
+                <LinearLayout
                     android:layout_width="match_parent"
                     android:layout_height="wrap_content"
-                    android:layout_marginBottom="16dp"
-                    tools:text="CN=example.com"/>
+                    android:orientation="vertical"
+                    android:layout_margin="8dp"
+                    android:padding="8dp">
 
-                <TextView
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:textStyle="bold"
-                    android:text="@string/trust_certificate_issued_by"/>
-                <TextView
-                    android:id="@+id/issuedBy"
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:layout_marginBottom="16dp"
-                    tools:text="CN=example.com"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        style="@style/TextAppearance.MaterialComponents.Headline5"
+                        android:layout_marginBottom="16dp"
+                        android:text="@string/trust_certificate_x509_certificate_details"/>
 
-                <TextView
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:textStyle="bold"
-                    android:text="@string/trust_certificate_validity_period"/>
-                <TextView
-                    android:id="@+id/validity_period"
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:layout_marginBottom="16dp"
-                    tools:text="1.1.1000 – 2.2.2000"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:textStyle="bold"
+                        android:text="@string/trust_certificate_issued_for"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:layout_marginBottom="16dp"
+                        android:text="@{model.issuedFor}"
+                        tools:text="CN=example.com"/>
 
-                <TextView
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:textStyle="bold"
-                    android:text="@string/trust_certificate_fingerprints"/>
-                <TextView
-                    android:id="@+id/fingerprint_sha1"
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    tools:text="SHA-1: abcdef"/>
-                <TextView
-                    android:id="@+id/fingerprint_sha256"
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:layout_marginBottom="16dp"
-                    tools:text="SHA-256: abcdef"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:textStyle="bold"
+                        android:text="@string/trust_certificate_issued_by"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:layout_marginBottom="16dp"
+                        android:text="@{model.issuedBy}"
+                        tools:text="CN=example.com"/>
 
-                <CheckBox
-                    android:id="@+id/fingerprint_ok"
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content"
-                    android:padding="8dp"
-                    android:layout_marginBottom="8dp"
-                    android:text="@string/trust_certificate_fingerprint_verified"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:textStyle="bold"
+                        android:text="@string/trust_certificate_validity_period"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:layout_marginBottom="16dp"
+                        android:text="@{@string/trust_certificate_validity_period_value(model.validFrom, model.validTo)}"
+                        tools:text="1.1.1000 – 2.2.2000"/>
 
-                <android.support.v7.widget.ButtonBarLayout
-                    android:layout_width="match_parent"
-                    android:layout_height="wrap_content">
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:textStyle="bold"
+                        android:text="@string/trust_certificate_fingerprints"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:layout_marginTop="4dp"
+                        android:text="@{model.sha1}"
+                        tools:text="SHA-1: abcdef"/>
+                    <TextView
+                        android:layout_width="match_parent"
+                        android:layout_height="wrap_content"
+                        android:layout_marginTop="4dp"
+                        android:layout_marginBottom="16dp"
+                        android:text="@{model.sha256}"
+                        tools:text="SHA-256: abcdef"/>
 
-                    <Button
-                        android:id="@+id/accept"
-                        android:layout_width="wrap_content"
+                    <CheckBox
+                        android:layout_width="match_parent"
                         android:layout_height="wrap_content"
-                        style="@style/Widget.AppCompat.Button.Borderless.Colored"
-                        android:text="@string/trust_certificate_accept"
-                        android:onClick="acceptCertificate"
-                        android:enabled="false"/>
-
-                    <Button
-                        android:id="@+id/reject"
-                        android:layout_width="wrap_content"
+                        android:padding="8dp"
+                        android:layout_marginBottom="8dp"
+                        android:checked="@={model.verifiedByUser}"
+                        android:text="@string/trust_certificate_fingerprint_verified"/>
+
+                    <LinearLayout
+                        android:layout_width="match_parent"
                         android:layout_height="wrap_content"
-                        style="@style/Widget.AppCompat.Button.Borderless"
-                        android:text="@string/trust_certificate_reject"
-                        android:onClick="rejectCertificate"/>
+                        android:orientation="horizontal">
 
-                </android.support.v7.widget.ButtonBarLayout>
+                        <Button
+                            android:layout_width="wrap_content"
+                            android:layout_height="wrap_content"
+                            android:layout_marginRight="16dp"
+                            style="@style/Widget.MaterialComponents.Button"
+                            android:text="@string/trust_certificate_accept"
+                            android:onClick="acceptCertificate"
+                            android:enabled="@{model.verifiedByUser}" />
 
-            </LinearLayout>
+                        <Button
+                            android:layout_width="wrap_content"
+                            android:layout_height="wrap_content"
+                            style="@style/Widget.MaterialComponents.Button.TextButton"
+                            android:text="@string/trust_certificate_reject"
+                            android:onClick="rejectCertificate"/>
 
-        </android.support.v7.widget.CardView>
+                    </LinearLayout>
 
-        <TextView
-            android:layout_width="match_parent"
-            android:layout_height="wrap_content"
-            android:layout_marginTop="16dp"
-            android:text="@string/trust_certificate_reset_info"/>
+                </LinearLayout>
+
+            </com.google.android.material.card.MaterialCardView>
+
+            <TextView
+                android:layout_width="match_parent"
+                android:layout_height="wrap_content"
+                android:layout_marginTop="16dp"
+                android:text="@string/trust_certificate_reset_info"/>
 
-    </LinearLayout>
-</ScrollView>
\ No newline at end of file
+        </LinearLayout>
+    </ScrollView>
+</layout>
diff --git a/src/main/res/values-bg/strings.xml b/src/main/res/values-bg/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..f708e1062cde2b4639cc5fd24d263e8633bd5f02
--- /dev/null
+++ b/src/main/res/values-bg/strings.xml
@@ -0,0 +1,19 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="certificate_notification_connection_security">Защита на връзката</string>
+    <string name="certificate_notification_user_interaction">Моля прегледай сертификата</string>
+
+    <string name="service_rejected_temporarily">Сертификатът е временно отхвърлен</string>
+
+    <string name="trust_certificate_unknown_certificate_found">cert4android се натъкна на непознат сертификат.  Искаш ли да му се довериш?</string>
+    <string name="trust_certificate_x509_certificate_details">Подробности за X509 сертификата</string>
+    <string name="trust_certificate_issued_for">Издаден за</string>
+    <string name="trust_certificate_issued_by">Издаден от</string>
+    <string name="trust_certificate_validity_period">Период на годност</string>
+    <string name="trust_certificate_validity_period_value">%1$s – %2$s (няма да се прилага)</string>
+    <string name="trust_certificate_fingerprints">Пръстови отпечатъци</string>
+    <string name="trust_certificate_fingerprint_verified">Проверих целия пръстов отпечатък</string>
+    <string name="trust_certificate_accept">Приемам</string>
+    <string name="trust_certificate_reject">Отхвърлям</string>
+    </resources>
\ No newline at end of file
diff --git a/src/main/res/values-el/strings.xml b/src/main/res/values-el/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..28f051f79add0bf772a72d6ed4aaef50f5e64575
--- /dev/null
+++ b/src/main/res/values-el/strings.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="certificate_notification_connection_security">Ασφάλεια σύνδεσης</string>
+    <string name="certificate_notification_user_interaction">Παρακαλώ ελέγξτε το πιστοποιητικό</string>
+
+    <string name="service_rejected_temporarily">Το πιστοποιητικό απορρίφθηκε προσωρινά</string>
+
+    <string name="trust_certificate_unknown_certificate_found">Το cert4android εντόπισε ένα άγνωστο πιστοποιητικό. Θέλετε να το εμπιστεύεστε;</string>
+    <string name="trust_certificate_x509_certificate_details">Λεπτομέρειες πιστοποιητικού X509</string>
+    <string name="trust_certificate_issued_for">Εκδόθηκε για</string>
+    <string name="trust_certificate_issued_by">Εκδόθηκε από</string>
+    <string name="trust_certificate_validity_period">Περίοδος ισχύος</string>
+    <string name="trust_certificate_validity_period_value">%1$s – %2$s (δεν θα εφαρμοστεί)</string>
+    <string name="trust_certificate_fingerprints">Αποτυπώματα</string>
+    <string name="trust_certificate_fingerprint_verified">Έχω πιστοποιήσει χειροκίνητα το δακτυλικό αποτύπωμα.</string>
+    <string name="trust_certificate_accept">Αποδοχή</string>
+    <string name="trust_certificate_reject">Απόρριψη</string>
+    <string name="trust_certificate_reset_info">Μπορείτε να επαναφέρετε όλα τα προσαρμοσμένα πιστοποιητικά στις ρυθμίσεις της εφαρμογής.</string>
+
+</resources>
\ No newline at end of file
diff --git a/src/main/res/values-es/strings.xml b/src/main/res/values-es/strings.xml
index d3c8636ee197a649895e7eaffd3b744c8b88dda0..f8266854160b66236dd6d52359560f626b98a655 100644
--- a/src/main/res/values-es/strings.xml
+++ b/src/main/res/values-es/strings.xml
@@ -4,6 +4,8 @@
     <string name="certificate_notification_connection_security">Seguridad de conexión</string>
     <string name="certificate_notification_user_interaction">Por favor, revisa el certificado</string>
 
+    <string name="service_rejected_temporarily">Certificado rechazado temporalmente</string>
+
     <string name="trust_certificate_unknown_certificate_found">cert4android ha encontrado un certificado desconocido. ¿Quieres que sea válido?</string>
     <string name="trust_certificate_x509_certificate_details">Detalles del certificado X509</string>
     <string name="trust_certificate_issued_for">Expedido para</string>
diff --git a/src/main/res/values-eu/strings.xml b/src/main/res/values-eu/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..583641d35461f74bdf4d92ee7522342069686b32
--- /dev/null
+++ b/src/main/res/values-eu/strings.xml
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    </resources>
\ No newline at end of file
diff --git a/src/main/res/values-fa/strings.xml b/src/main/res/values-fa/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..52f5aa5e42ca03b3f6f589e449620c61958e5979
--- /dev/null
+++ b/src/main/res/values-fa/strings.xml
@@ -0,0 +1,20 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="certificate_notification_connection_security">امنیت اتصال</string>
+    <string name="certificate_notification_user_interaction">لطفا گواهی‌نامه‌ی خود را بازبینی کنید</string>
+
+    <string name="service_rejected_temporarily">گواهی‌نامه موقتاً رد شده‌است</string>
+
+    <string name="trust_certificate_unknown_certificate_found">cert4android با یک گواهی‌نامه‌ی ناشناخته مواجه‌شده‌است. آیا به آن اعتماد می‌کنید؟</string>
+    <string name="trust_certificate_x509_certificate_details">جزئیات گواهی‌نامه‌ی X509</string>
+    <string name="trust_certificate_issued_for">مشکل برای</string>
+    <string name="trust_certificate_issued_by">مشکل از</string>
+    <string name="trust_certificate_validity_period">دوره‌ی اعتبار</string>
+    <string name="trust_certificate_fingerprints">اثر انگشت‌ها</string>
+    <string name="trust_certificate_fingerprint_verified">به صورت دستی تمام اثر انگشت را تایید می‌کنم</string>
+    <string name="trust_certificate_accept">قبول</string>
+    <string name="trust_certificate_reject">رد</string>
+    <string name="trust_certificate_reset_info">شما می‌توانید تمام گواهی‌نامه‌های سفارشی را در تنظیمات برنامه مجدداً تنظیم کنید.</string>
+
+</resources>
\ No newline at end of file
diff --git a/src/main/res/values-fi/strings.xml b/src/main/res/values-fi/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..583641d35461f74bdf4d92ee7522342069686b32
--- /dev/null
+++ b/src/main/res/values-fi/strings.xml
@@ -0,0 +1,4 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    </resources>
\ No newline at end of file
diff --git a/src/main/res/values-gl/strings.xml b/src/main/res/values-gl/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..c2dabb2843196027e38811fcd58e21b4d427c929
--- /dev/null
+++ b/src/main/res/values-gl/strings.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="certificate_notification_connection_security">Seguridade da conexión</string>
+    <string name="certificate_notification_user_interaction">Por favor revise o certificado</string>
+
+    <string name="service_rejected_temporarily">Certificado temporalmente rexeitado</string>
+
+    <string name="trust_certificate_unknown_certificate_found">cert4android atopou un certificado descoñecido. Quere confiar nel?</string>
+    <string name="trust_certificate_x509_certificate_details">Detalles do certificado X509</string>
+    <string name="trust_certificate_issued_for">Proporcionado para</string>
+    <string name="trust_certificate_issued_by">Proporcionado por</string>
+    <string name="trust_certificate_validity_period">Válido por </string>
+    <string name="trust_certificate_validity_period_value">%1$s – %2$s (non será imposto)</string>
+    <string name="trust_certificate_fingerprints">Pegadas dixitais</string>
+    <string name="trust_certificate_fingerprint_verified">Verifiquei manualmente toda a pegada dixital.</string>
+    <string name="trust_certificate_accept">Aceptar</string>
+    <string name="trust_certificate_reject">Rexeitar</string>
+    <string name="trust_certificate_reset_info">Pode restablecer os certificados personalizados nos axustes da app.</string>
+
+</resources>
\ No newline at end of file
diff --git a/src/main/res/values-ru/strings.xml b/src/main/res/values-ru/strings.xml
index ce0d26ae6e666f17d1962c6d08fd7b002fe48a91..7fb7cacea0f2190067ef5e493de9d69b566dfa63 100644
--- a/src/main/res/values-ru/strings.xml
+++ b/src/main/res/values-ru/strings.xml
@@ -7,7 +7,7 @@
     <string name="service_rejected_temporarily">Сертификат временно отклонен</string>
 
     <string name="trust_certificate_unknown_certificate_found">cert4android обнаружил неизвестный сертификат. Вы хотите доверять ему?</string>
-    <string name="trust_certificate_x509_certificate_details">Сведения о сертификате X509</string>
+    <string name="trust_certificate_x509_certificate_details">Данные сертификата X509</string>
     <string name="trust_certificate_issued_for">Выдан для</string>
     <string name="trust_certificate_issued_by">Кем выдан</string>
     <string name="trust_certificate_validity_period">Срок действия</string>
diff --git a/src/main/res/values-sk/strings.xml b/src/main/res/values-sk/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..88162b7d22fe91546f114f40543cbee93503198e
--- /dev/null
+++ b/src/main/res/values-sk/strings.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="certificate_notification_connection_security">Zabezpečenie spojenia</string>
+    <string name="certificate_notification_user_interaction">Skontrolujte, prosím, certifikát</string>
+
+    <string name="service_rejected_temporarily">Certifikát bol dočasne odmietnutý</string>
+
+    <string name="trust_certificate_unknown_certificate_found">cert4android  zistil neznámy certifikát. Prajete si dôverovať mu?</string>
+    <string name="trust_certificate_x509_certificate_details">Detaily X509 certifikátu</string>
+    <string name="trust_certificate_issued_for">Vydaný pre</string>
+    <string name="trust_certificate_issued_by">Vydaný</string>
+    <string name="trust_certificate_validity_period">Obdobie platnosti</string>
+    <string name="trust_certificate_validity_period_value">%1$s – %2$s (nebude sa vynucovať)</string>
+    <string name="trust_certificate_fingerprints">Odtlačky</string>
+    <string name="trust_certificate_fingerprint_verified">Manuálne som skontroloval celý odtlačok.</string>
+    <string name="trust_certificate_accept">Prijať</string>
+    <string name="trust_certificate_reject">Odmietnuť</string>
+    <string name="trust_certificate_reset_info">V nastavení aplikácie môžete vynulovať všetky používateľské certifikáty</string>
+
+</resources>
\ No newline at end of file
diff --git a/src/main/res/values-sl-rSI/strings.xml b/src/main/res/values-sl-rSI/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..9161980e3300feb1454ada17f6a078b22ba60ec8
--- /dev/null
+++ b/src/main/res/values-sl-rSI/strings.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="certificate_notification_connection_security">Varnost povezave</string>
+    <string name="certificate_notification_user_interaction">Prosim preverite certifikat</string>
+
+    <string name="service_rejected_temporarily">Certifikat je začasno onemogočen</string>
+
+    <string name="trust_certificate_unknown_certificate_found">Cert4android ne prepozna certifikata. Ali vi zaupate certifikatu?</string>
+    <string name="trust_certificate_x509_certificate_details">X509 podrobnosti certifikata</string>
+    <string name="trust_certificate_issued_for">Izdano za</string>
+    <string name="trust_certificate_issued_by">Izdano od</string>
+    <string name="trust_certificate_validity_period">Obdobje veljave</string>
+    <string name="trust_certificate_validity_period_value">%1$s - %2$s (ne bo prisilno uporabljeno)</string>
+    <string name="trust_certificate_fingerprints">Prstni odtisi</string>
+    <string name="trust_certificate_fingerprint_verified">Sem ročno preveril celoten prstni odtis.</string>
+    <string name="trust_certificate_accept">Sprejmi</string>
+    <string name="trust_certificate_reject">Zavrni</string>
+    <string name="trust_certificate_reset_info">V nastavitvah aplikacije lahko ponastavite vse certifikate.</string>
+
+</resources>
\ No newline at end of file
diff --git a/src/main/res/values-sr/strings.xml b/src/main/res/values-sr/strings.xml
index d79c291b809bc646ae9c41cfac8dbad863e58c54..c931a8f225ae06bd17fe208ffd2846720a6cba51 100644
--- a/src/main/res/values-sr/strings.xml
+++ b/src/main/res/values-sr/strings.xml
@@ -4,6 +4,8 @@
     <string name="certificate_notification_connection_security">Безбедност везе</string>
     <string name="certificate_notification_user_interaction">Прегледајте сертификат</string>
 
+    <string name="service_rejected_temporarily">Сертификат привремено одбијен</string>
+
     <string name="trust_certificate_unknown_certificate_found">серт-за-Андроид је наишао на непознат сертификат. Желите ли да се поуздате у њега?</string>
     <string name="trust_certificate_x509_certificate_details">Детаљи X509 сертификата</string>
     <string name="trust_certificate_issued_for">Издат за</string>
diff --git a/src/main/res/values-szl/strings.xml b/src/main/res/values-szl/strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..2921b84c72424851063cc71b68491dbdce239baa
--- /dev/null
+++ b/src/main/res/values-szl/strings.xml
@@ -0,0 +1,21 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="certificate_notification_connection_security">Bezpieczyństwo połōnczynio</string>
+    <string name="certificate_notification_user_interaction">Przejzdrzij certyfikat</string>
+
+    <string name="service_rejected_temporarily">Certyfikat tymczasowo ôdciepniynty</string>
+
+    <string name="trust_certificate_unknown_certificate_found">cert4android trefiōł niyznōmy certyfikat. Chcesz mu zaufać?</string>
+    <string name="trust_certificate_x509_certificate_details">Informacyje ô certyfikacie X509</string>
+    <string name="trust_certificate_issued_for">Wydane dlo</string>
+    <string name="trust_certificate_issued_by">Wydane ôd</string>
+    <string name="trust_certificate_validity_period">Ôkres ważności</string>
+    <string name="trust_certificate_validity_period_value">%1$s – %2$s (niy bydzie wymuszany)</string>
+    <string name="trust_certificate_fingerprints">Ôdciski palcōw</string>
+    <string name="trust_certificate_fingerprint_verified">Cołki ôdcisk palca bōł ryncznie zweryfikowany.</string>
+    <string name="trust_certificate_accept">Akceptuj</string>
+    <string name="trust_certificate_reject">Ôdciep</string>
+    <string name="trust_certificate_reset_info">We sztelōnkach aplikacyje możesz zresetować wszyjske włosne certyfikaty.</string>
+
+</resources>
\ No newline at end of file
diff --git a/src/main/res/values/about_strings.xml b/src/main/res/values/about_strings.xml
new file mode 100644
index 0000000000000000000000000000000000000000..c46baa7227c95cafb3250dd92b0ce7e1f50e90dc
--- /dev/null
+++ b/src/main/res/values/about_strings.xml
@@ -0,0 +1,13 @@
+<?xml version="1.0" encoding="utf-8"?>
+<resources>
+
+    <string name="define_cert4android" translatable="false" />
+    <string name="library_cert4android_author" translatable="false">Ricki Hirner</string>
+    <string name="library_cert4android_authorWebsite" translatable="false">https://www.bitfire.at</string>
+    <string name="library_cert4android_libraryName" translatable="false">cert4android</string>
+    <string name="library_cert4android_libraryDescription">Library for managing custom certificates in an app-private key store</string>
+    <string name="library_cert4android_libraryWebsite" translatable="false">https://gitlab.com/bitfireAT/cert4android</string>
+    <string name="library_cert4android_licenseId" translatable="false">gpl_3_0</string>
+    <string name="library_cert4android_isOpenSource" translatable="false">true</string>
+
+</resources>
\ No newline at end of file
diff --git a/src/test/java/foundation/e/cert4android/CertUtilsTest.kt b/src/test/java/foundation/e/cert4android/CertUtilsTest.kt
index 7b987c26645f045b9af04559a80e65ef3ba41211..4b78f60fed49917c9cfd05bec0841c5355dd4941 100644
--- a/src/test/java/foundation/e/cert4android/CertUtilsTest.kt
+++ b/src/test/java/foundation/e/cert4android/CertUtilsTest.kt
@@ -25,7 +25,7 @@ class CertUtilsTest {
     fun getTag() {
         val factory = CertificateFactory.getInstance("X.509")
 
-        javaClass.classLoader.getResourceAsStream("davdroid-web.crt").use { stream ->
+        javaClass.classLoader!!.getResourceAsStream("davdroid-web.crt").use { stream ->
             val cert = factory.generateCertificate(stream) as X509Certificate
             assertNotNull(cert)