Many Xiaomi smartphone users are faced with the need to check the list of installed root certificates on the device. This is often required to ensure data privacy, fix connection errors to banking applications or clean the system after using specific corporate software. Certificate CC (Certification Center) is a digital key that confirms the authenticity of the site or application, but in the hands of attackers it can become a tool for intercepting traffic.
The Android operating system that runs the MIUI shell has a strict cryptographic key storage structure, with standard user certificates stored in a separate, open-access repository, while system keys are protected from accidental deletion, and understanding the difference between these layers is critical to properly performing the cleanup without risking damage to the operating system.
In this article, we will take a look at how to find suspicious or unnecessary entries in the trusted authority list and remove them safely. We will look at the standard methods through the settings menu, and discuss the nuances of working with root rights if you need to intervene in the system partition. Your goal is to return the device to a state of βcleanβ trust, eliminating any third-party interference with network security.
Why you need to remove certificates of the CC on Android
The main reason for the cleanup is to protect against potential attacks such as Man-in-the-Middle. If your Xiaomi device has a foreign root certificate installed, an attacker can theoretically decrypt your device. HTTPS-This means that passwords, correspondence and banking data can be accessed by third parties, even if the connection is marked as secure.
Often users install these keys themselves without realizing the consequences, whether by connecting to corporate Wi-Fi networks, installing parental control apps, or using specific browsers with traffic filtering, trusted certificates added by the user receive high privileges, making their removal a priority when suspicious activity is detected.
Deletion is also necessary if applications such as bank clients or Google Pay refuse to work, citing a violation of the integrity of the security system.The presence of unnecessary or unknown entries in the key store can be regarded by antivirus and security systems as a sign of hacking or the presence of malware.
β οΈ Warning: Never delete system certificates with names of well-known companies (Google, Xiaomi, Verizon, etc.) unless you are 100% sure that they were added by you manually.
Search and analysis of established certificates
Before you start deleting, you need to do a review of what's installed on your smartphone. In the MIUI shell, the path to this menu may vary slightly depending on the Android version, but the logic remains the same. You need to find the section responsible for encryption and credentials.
To start, go to the basic device settings. Find the Password and Security section or Additional, depending on the location of your firmware. Next, select Privacy, then Special Features or Encryption and Accounts at once. This is where the Trusted Certificates or User Certificates button is hidden.
In the list that opens, you'll see all the root certificates installed. Pay attention to the installation date and the publisher's name. If you see a name that you don't know or a date that coincides with the installation of a suspicious app, that's a cause for concern.
How to distinguish a system certificate from a user certificate?
Step-by-step: Removal through MIUI settings
The process of removing user certificates on Xiaomi is as simple as possible for developers to ensure that any owner can secure their device, you do not need special programming skills, just follow the algorithm, the main thing is to carefully choose objects to remove.
Here is a detailed algorithm of actions:
- π± Open the Settings menu and go to Password and Security.
- π Select Privacy and find the Trusted Certificates button (sometimes in the Special Opportunities tab).
- ποΈ In the window that opens, switch to the Custom tab to see only what was added manually.
- ποΈ Click on the name of the suspicious certificate and select the option to Delete or Clean at the bottom of the screen.
Once confirmed, the system will request a screen unlock pin or fingerprint, a measure to protect against the accidental deletion of important keys, and once you confirm the operation, the record will disappear from the list and the associated network rules will cease to apply.
βοΈ Pre-deletion check
If you reboot your device after deleting it, the changes will take full effect. Some network applications may require re-authorization, as their previous sessions may have relied on a remote security key, which is normal for the system to behave after changing the configuration of cryptographic keys.
Work with system certificates and Root rights
This is complicated if a malicious or unnecessary certificate has been embedded in the system partition /system/etc/security/cacerts/. Normally, it cannot be removed through the settings menu, since the partition is protected from writing, and requires root rights and a file manager with access to system folders, such as Root Explorer or MT Manager.
To remove the system certificate, you will need:
- π Presence of superuser rights (Root) obtained through Magisk or similar utilities.
- π File Manager who can work with root rights and mount partitions in write mode.
- πΎ Backup of the original key storage file in case the deletion disrupts the system.
The process is as follows: you go along the /system/etc/security/cacerts/ path, find a file with the corresponding hash or name (often.0 files), and delete it. After that, you must change the permissions to access the remaining files if they are lost, and restart the device.
β οΈ Note: Modification of the system partition /system cancels warranty on Xiaomi device and may disrupt Google services and banking applications that check system integrity.
π‘
Before any interference with system files, make a full backup of the EFS partition and data via TWRP or Mi Cloud to be able to roll back in case of a critical error.
Comparison of Key Storage Cleaning Methods
There are several approaches to solving the problem of excessive certificates, and the choice of method depends on your technical training and the depth of penetration of the threat. Below is a table that will help determine the best way.
| Method | Necessary rights | Risk to the system | Efficiency |
|---|---|---|---|
| Through MIUI settings | No. | Minimum | Only user-generated |
| Resetting network settings | No. | Low. | Medium (removes Wi-Fi keys) |
| File Manager (Root) | Root | High-pitched | Maximum (all certificates) |
| Flashing the device | Bootloader | Medium. | Complete cleaning |
As you can see from the table, the standard method through settings is the safest for the average user, it affects only the area that the owner or applications have modified with his consent, using root rights gives full control, but requires high skill.
If you're not sure about your abilities, you'd better limit yourself to removing the menu or reset the device completely to factory settings, which is guaranteed to delete all user certificates and return the software part to its original state, although it will take time to reconfigure the smartphone.
Resetting network settings as an alternative
Sometimes the problem is solved not by deleting a specific file directly, but by resetting all network settings, a feature in MIUI that returns Wi-Fi, mobile internet and Bluetooth settings to factory values, often resulting in a clearing of the certificate cache associated with network connections.
To reset, go to Settings β Connection & Sharing β Reset Wi-Fi, mobile networks and Bluetooth. Press Reset button at the bottom of the screen. The device will alert you that all saved Wi-Fi passwords and associated Bluetooth devices will be deleted.
This method is effective if the certificate was tied to a specific network profile or corporate security policy implemented through the access point. After the reboot, you will have to re-enter passwords from Wi-Fi networks, but the list of trusted CAs will be cleared of temporary records.
Prevention and safety of Xiaomi devices
Once suspicious certificates are successfully removed, it is important to ensure that they are protected against reappearance, and the main attack vector is to install applications from unknown sources, and always check what permissions the application requests when installing, especially if it requires access to device administration.
Check the list of applications with administrator rights regularly. Go to Settings β Password and Security β Device Administrators. There should be no third-party programs here. If you see an unknown application with such permissions, disable it immediately and delete it.
Also worth turning on is Google Play Protect, which scans devices for malware that can embed false certificates. A timely update to MIUIβs operating system closes vulnerabilities through which attackers can access key storage.
β οΈ Warning: Do not ignore browser warnings that "Connection is not secure" or "Certificate is not trusted" This is the first sign that someone is trying to intercept your traffic or there is a conflicting certificate on the device.
π‘
Regularly checking the list of user certificates is the best prevention of security problems on Android.