Post

Replies

Boosts

Views

Activity

iOS certificate pinning with Future dated certificates.
Hi All,I am developing iOS appliction and implemented certificate pinning and it works succesffuly. One downside i see is once certificate expires we have to maintain new one at both server and client end. Mostly certificate will expire by 1 or 2 years and to keep users unblocked we have plan app updates to have new certificates.I am looking for solution something like, adding future dated certificates to ios app bundle and to avoid adding it every time certificate expires.Does anyone has idea on this or implemneted earlier with this approch ? Or we have keep some time frame where we need to release new app updates with new certificate added ?Thanks,Amol
0
0
433
Mar ’20
Which is the best code Obfuscation library for iOS(Swift).
I am developing application and in penetration test came across security thing like reverse engineering. I am looking for good library(pod) which can be used in iOS app to obfuscate the code.I came across 2 libraries :1. Obfuscator2. SwiftShied( this one seems to be updated and support Xcode 11 as well)Just want to know if any other better option available to try out.Is anyone has reference to libraies which can be used to obfuscate ios app in swift ?
2
0
4.1k
Mar ’20
iOS 11.3 issue : The certificate for this server is invalid
We are sending one get API call request to fetch user profile data. As of now this request is working fine till iOS 11.2 version. We updated Xcode to 9.4.1 and ran application with iOS 11.3 but it fails with below error :Error Domain=NSURLErrorDomain Code=-1202 "The certificate for this server is invalid. You might be connecting to a server that is pretending to be ““Server URL” which could put your confidential information at risk." UserInfo={NSURLErrorFailingURLPeerTrustErrorKey=<SecTrustRef: 0x600000305e80>, NSLocalizedRecoverySuggestion=Would you like to connect to the server anyway?, _kCFStreamErrorDomainKey=3, _kCFStreamErrorCodeKey=-9807, NSErrorPeerCertificateChainKey=( "<cert(0x7f8d6a1ce200) s: *“Server URL: GeoTrust SSL CA - G3>", "<cert(0x7f8d6a0dca00) s: GeoTrust SSL CA - G3 i: GeoTrust Global CA>"), NSUnderlyingError=0x608000657100 {Error Domain=kCFErrorDomainCFNetwork Code=-1202 "(null)" UserInfo={_kCFStreamPropertySSLClientCertificateState=0, kCFStreamPropertySSLPeerTrust=<SecTrustRef: 0x600000305e80>, _kCFNetworkCFStreamSSLErrorOriginalValue=-9807, _kCFStreamErrorDomainKey=3, _kCFStreamErrorCodeKey=-9807, kCFStreamPropertySSLPeerCertificates=( "<cert(0x7f8d6a1ce200) s: *API path: GeoTrust SSL CA - G3>", "<cert(0x7f8d6a0dca00) s: GeoTrust SSL CA - G3 i: GeoTrust Global CA>")}}, NSLocalizedDescription=The certificate for this server is invalid. You might be connecting to a server that is pretending to be “Server URL” which could put your confidential information at risk., NSErrorFailingURLKey=, NSErrorFailingURLStringKey="API path", NSErrorClientCertificateStateKey=0}Could anyone please help to resolve this issue ? Could not figure out why this request is failing iOS 11.3 onwards ?
3
0
5.0k
Aug ’18