Need the default SSL certificate validation in iOS app

The iOS app needs the basic ssl validation to secure the client-server communication. I need a way to avoid SSL pinning which may have the client-server dependencies and need to update the app if the SSL cert changed.

Is there any way to allow all the valid SSL cert issued by any trusted CA's ?

Replies

Is there any way to allow all the valid SSL cert issued by any trusted CA's ?

You can do this using a trust object (

<Security/SecTrust.h>
).

However, all the built-in TLS clients already do standard (RFC 2818) server trust evaluation by default, so you shouldn’t need to mess with this unless you’re using a third-party TLS library (something I recommend you avoid) or you need to customise TLS server trust evaluation (which you can learn more about in TN2232).

Share and Enjoy

Quinn “The Eskimo!”
Apple Developer Relations, Developer Technical Support, Core OS/Hardware

let myEmail = "eskimo" + "1" + "@apple.com"