简体繁体中英

Security of SSL Pinning

原文 2019-08-06 13:35:16 5 1 ios/ security/ ssl

I have an iOS app which implements SSL Pinning. I compare the remote certificate against the locally stored certificate and proceed depending on the result of the comparison. If both certificates are equal, the URL connection is permitted. Otherwise, it is denied. My question is this: Can an attacker change the local certificate stored in the app (.ipa) with another certificate? This would allow the attacker to see all of my requests and responses.

Thanks.

1 answers

是的，但仅在越狱设备上，因为在非越狱设备上，您无法查看已安装应用程序的内容。

SSL Pinning with AFNetworking 3.0

AFHTTPRequestOperation with SSL Pinning not working

SSL Pinning with AFNetworking

react native ssl pinning

SSL pinning client encryption

ATS and SSL pinning

SSL Pinning on iOS

Would iOS AFNetwork SSL Pinning mode provide additional security bonus if valid certificate deployed

How to implement SSL Pinning on SFSafariViewController?

Does SSL pinning work with WKWebView

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question SSL Pinning with AFNetworking 3.0 AFHTTPRequestOperation with SSL Pinning not working SSL Pinning with AFNetworking react native ssl pinning SSL pinning client encryption ATS and SSL pinning SSL Pinning on iOS Would iOS AFNetwork SSL Pinning mode provide additional security bonus if valid certificate deployed How to implement SSL Pinning on SFSafariViewController? Does SSL pinning work with WKWebView

Related Tags

Security of SSL Pinning

Question

1 answers

solution1 0 ACCPTED 2019-08-06 13:42:37

solution1
0 ACCPTED 2019-08-06 13:42:37