Is a DV SSL certificate good enough for iOS?

App & System Services Networking
simonoff OP
Created Oct ’15
Replies 1
Boosts 0
Views 768
Participants 2

I know that iOS doesn't want you to use http connections, and for https, you can't use self-signed certificates anymore. The cheapest certificate with a real authority chain available uses domain verification (DV).


Is that good enough for iOS connections, or do you need an OV or EV certificate?


(The background of this is that I understand many people consider DV certs to be insecure. My particular need, which is behind a firewall, doesn't need the security provided by OV or EV certs, but I'd better buy the more expensive one if iOS is going to refuse to connect with my site with a DV cert. I know I can make an exception for my app, but this is for a site for installing an app over-the-air under the Enterprise dev license, and I don't think there's a way to force an exception for installation. At least, I think that is my problem -- I get a "can't find website" error downloading the manifest file.)

Replies  1
Boosts  0
Views  768
Participants  2
DTS Engineer OP
Apple
Nov ’15

Is that good enough for iOS connections, or do you need an OV or EV certificate?

You certainly don’t need an EV certificate. As to OV vs DV, my understanding is that these are more about CA practice rather than the actual certificate itself.

Regardless, I would have thought your best option here is to test an actual certificate issued by the CA you’re planning to use. Most CAs either have some demo certificates posted, or will issue you a demo certificate with a short lifetime.

Share and Enjoy

Quinn "The Eskimo!"
Apple Developer Relations, Developer Technical Support, Core OS/Hardware 

let myEmail = "eskimo" + "1" + "@apple.com"
0
Is a DV SSL certificate good enough for iOS?
First post date Last post date
 
 
Q