Android : What kind of SSL certyficate I need - web service and Android app with HttpClient

I'm working on Android app with PHP web-service on server side.

I need:

1. Data encryption


2. Protect my app from DNS spoofing


3. Something that will "just work" with default java/android HttpClient, without any tricks with CA's in android app.

There are many kinds of certyficates (DV - domain validation, OV - organization validation, EV - extended validation).

I'm not sure what I need.