app-transport-security

So Apple requires TLS 1.2 with Forward Secrecy for URLs beginning iOS 9. Independent of the app, what's the best way to verify that a server meets all the requirements? nscurl just outright doesn't work - or I don't know how to use it. My output simply repeatedly says CFNetwork SSLHandshake failed, even though I know the server is compliant. TLSTool works to some extent but I cannot force the Forward Secrecy (FS) ciphers to be used. openssl can specify specific cipher for the client mode, but the version I have doesn't have FS ciphers. How do I upgrade openssl? What's the best way? So far I've

Under iOS 9, I've used the accepted answer here: Transport security has blocked a cleartext HTTP I added the entries to my Info.plist file under NSAppTransportSecurity . My app seems to be functioning properly, as well as executing all of the requests for which I've accounted for. I am still receiving the error: App Transport Security has blocked a cleartext HTTP (http://) resource load since it is insecure. Temporary exceptions can be configured via your app's Info.plist file. My problem is that I can't find where in my app codebase this is coming from and I do NOT want to allow all domains

In iOS 9, Apple is blocking insecure HTTP connections for apps, unless specific hosts are whitelisted. http://ste.vn/2015/06/10/configuring-app-transport-security-ios-9-osx-10-11/ Are WebView(s) exempt from these rules for obvious reasons, or are we still expected to whitelist hosts that a browser opens... including all links from a given page? I wasn't sure if this was our responsibility or if that was exempt. SFSafariViewController can show HTTP without the NSAppTransportSecurity key. UIWebView and WKWebView require the NSAppTransportSecurity key mentioned above to display HTTP pages.

I have an app where I hit a HTTP Request <NSURLConnection: 0x12d755110> { request: <NSMutableURLRequest: 0x12d754e10> { URL: http://XX.XX.XX.XXX/webService/dataService.svc/SearchLocation } } Now, whenever the above request is made I get the following error and no data is received in the response. After 60 Sec I get " Time Out error ". It is working fine on IOS8 and below but not working gin IOS9. Could anybody let me know what else have I got to do with this issue. Also, I have done the following changes regarding ATS for iOS9 in info.plist, but still facing the issue. Please let me know how

I've been working on an app...since the iOS 11 update disabling ATS does not work anymore I've added the below in the info.plist <key>NSAppTransportSecurity</key> <dict> <key>NSAllowsArbitraryLoads</key> <true/> </dict> I can't use the domain exception key as I am downloading images from unknown domains. below is what I get when trying to download an image Task <C3DC30F1-5869-46F6-ABA4-5E1EC8334FD8>.<0> HTTP load failed (error code: -1005 [4:-4]) NSURLConnection finished with error - code -1005 Ashish I am aware that IOS 11 not longer supports the following: RC4 3DES-CBC AES-CBC MD5 SHA-1

I'm upgrading an iOS app to iOS 9, and I have some URLs that are not secure, and I need a few exceptions to App Transport Security. I've added the two that I know about, but there are some warnings happening now stating: App Transport Security has blocked a cleartext HTTP (http://) resource load since it is insecure. Temporary exceptions can be configured via your app's Info.plist file. I need to know what URLs are being blocked so I can add them to the Info.plist, they're probably images or media files. How can I make the system log the URLs it decided not to load? Micah Hainline Editor Note