Post

Replies

Boosts

Views

Activity

TLS - Mutual Authentication without the private key
Hello,We are doing TLS with mutual authentication.To do this, we use the method didReceiveChallenge and after SecPKCS12Import, we have the requirements of the URLCredential constructor.https://developer.apple.com/documentation/foundation/nsurlsessiontaskdelegate/1411595-urlsession?language=swiftAnd everything works like a charm.Now, we have a probleme : the private key cannot be export.This private key is in a NFC document.Finally, this is my question :How to send the "Certificate Verify" message that contains a digitally signed copy of the previous handshake message.This message is signed using the client certificate's private key. The server can validate the message digest of the digital signature by using the client's public key (which is found in the client certificate). Once the digital signature is validated, the server knows that the public key belonging to the client matches the private key used to create the signature.We can ask to the card to sign data, we know how to do that, but I don't see a way to provide this data to the URLSession, except using URLCredential that needs the privateKey.I've already take a look on the Network Frameworkhttps://developer.apple.com/documentation/network?language=swifthttps://developer.apple.com/documentation/network/nwprotocoltlshttps://developer.apple.com/documentation/network/security_options?language=swiftBut found nothing interesting.Do you have any idea ?Regards,Greg.
3
0
1.1k
Mar ’20
App rejection due to MDM profile (that we dont use)
Hello, we have two binaray rejections from the appStore because : "Your app uses a mobile device management (MDM) profile but does not have MDM capability granted." I dont understant where the verification team determine the use of a MDM profile : we don't use it and the previous submission was successful. In the App Id configuration : MDM Managed Associated Domains is not check (and has never been) In the Application code, the capability MDM Managed Associated Domains is not added (and has never been) We use an Apple Developer Program to publish on the AppStore, not an Entreprise I can see we are not the same in this situation, did someone find a way to resolve it ? Thant you !
0
0
627
Jan ’22