Needed details on Certificate validations mentioned in App Security TechNote?

Do we need to ensure the above suggested certificate compliance on all of the certificates involved from the Leaf, all the intermediary, and the Root CA certificates?

No. These requirements apply just to the leaf certificate.

Share and Enjoy
—
Quinn "The Eskimo!"
Apple Developer Relations, Developer Technical Support, Core OS/Hardware

let myEmail = "eskimo" + "1" + "@apple.com"

Thanks for your reply, and it really helped validate our case.

Also, Could you provide the actual trusted root CA certificates (actual certificates) for either iOS8 or iOS9?

Thanks,

Rajesh.

Also, Could you provide the actual trusted root CA certificates (actual certificates) for either iOS8 or iOS9?

The iOS 8 list is published by AppleCare as List of available trusted root certificates in iOS 8.

I fully expect that they will publish an equivalent article for iOS 9 once it’s all done but, as I don’t work for AppleCare, I can’t make commitments on their behalf.

Share and Enjoy
—
Quinn "The Eskimo!"
Apple Developer Relations, Developer Technical Support, Core OS/Hardware

let myEmail = "eskimo" + "1" + "@apple.com"

Thanks for pointing me to the ios8 trusted cert list.

As JAVA SDK provides the default trusted certificate files in location: JAVA_HOME/jre/lib/security/cacerts.

Similarly looking for options to obtain the list of certificates trusted by iOS8 or 9.

Thanks,

Rajesh.

I addressed this point in my response to your other thread.

Share and Enjoy
—
Quinn "The Eskimo!"
Apple Developer Relations, Developer Technical Support, Core OS/Hardware

let myEmail = "eskimo" + "1" + "@apple.com"