Using Network Framework + Bonjour + QUIC + TLS

I came here for help and advise and I got just that. Thank you. I want to head your input so I'll be attempting to get the basics working with QUIC. In my mind they are as follows:

• Generate a digital identity per user and store it on my backend
• Be able to send generated digital identity to ios app after the user authenticates
• Store digital identity in keychain
• Use digital identity to setup TLS for QUIC NWListener and NWConnection
• Use SHA256(user.id + "TXT_RECORD" + user.email + "TXT_RECORD" + user.id) for the TXT Record
• Be able to validate / verify the certificate chain while in sec_protocol_options_set_verify_block

Am I missing anything?

Can I please have some assistance on how to properly setup an NWParameters extension to accept a base64Encoded public certificate and then use it to correctly secure connections?

I have this so far

extension NWParameters {
    convenience init(base64EncodedCert: String) throws {
        // Create QUIC parameters with the TLS options
        let quicOptions = NWProtocolQUIC.Options(alpn: ["h3"])
        
        // Convert the base64 string to a string to handle PEM format
        guard let pemData = Data(base64Encoded: base64EncodedCert),
              let pemString = String(data: pemData, encoding: .utf8)
        else {
            print("Failed to decode initial base64 string")
            throw CertificateError.invalidBase64String
        }
        
        // Extract the certificate content between the PEM markers
        let lines = pemString.components(separatedBy: .newlines)
        let certificateLines = lines.filter { line in
            !line.contains("BEGIN CERTIFICATE") && !line.contains("END CERTIFICATE") && !line.isEmpty
        }
        
        // Join the lines and create certificate data
        let certificateString = certificateLines.joined()
        guard let certificateData = Data(base64Encoded: certificateString) else {
            print("Failed to decode certificate content")
            throw CertificateError.invalidBase64String
        }
        
        print("Successfully decoded certificate content, data length: \(certificateData.count)")
        
        // Try to create certificate
        guard let certificate = SecCertificateCreateWithData(nil, certificateData as CFData) else {
            print("Failed to create certificate from data")
            throw CertificateError.certificateCreationFailed
        }
        
        sec_protocol_options_set_min_tls_protocol_version(quicOptions.securityProtocolOptions, .TLSv13)
        sec_protocol_options_set_max_tls_protocol_version(quicOptions.securityProtocolOptions, .TLSv13)
        
        print("Successfully created certificate")
        
        // Get certificate summary for verification
        let certificateSummary = SecCertificateCopySubjectSummary(certificate) as? String
        print("Certificate Summary: \(certificateSummary ?? "No summary available")")
        
        // Create identity from certificate
        sec_protocol_options_set_verify_block(quicOptions.securityProtocolOptions, { _, sec_trust, sec_protocol_verify_complete in
            
            // Get the certificates from the trust object
            let trust = sec_trust_copy_ref(sec_trust).takeRetainedValue()
            
            // Get the certificate chain
            guard let certificates = SecTrustCopyCertificateChain(trust) as? [SecCertificate],
                  let peerCertificate = certificates.first
            else {
                print("Failed to get peer certificate from chain")
                sec_protocol_verify_complete(false)
                return
            }
            
            // Compare the peer's certificate with our pinned certificate
            let peerCertificateData = SecCertificateCopyData(peerCertificate) as Data
            let pinnedCertificateData = SecCertificateCopyData(certificate) as Data
            
            // Verify the certificates match
            let certificatesMatch = peerCertificateData == pinnedCertificateData
            print("Certificate verification result: \(certificatesMatch)")
            
            sec_protocol_verify_complete(certificatesMatch)
        }, DispatchQueue(label: "com.example.certificate.verification"))
        
        self.init(quic: quicOptions)
    }
}

I am seeing "Certificate Summary: " printed to the console but I am getting the following errors

Connection state changed to: failed(-9858: handshake failed)
Connection failed: -9858: handshake failed

You said this previously

If you want to authenticate the device, then each device needs its own identity. In that case, your identity generation code will need to include something device specific into the identity’s certificate so that a peer can tell that remote peer is the device that it’s expecting.

If you want to authenticate the user, then you can use a single identity for that. A peer can tell that the remote peer is the same user by checking that the certificate matches the certificate in the digital identity that it’s using.

The tricky part of about the latter is that your server has to store the digital identity (so, the certificate and the private key) so that new clients can access it. OTOH, if you authenticate the device then each device retains its own private key and the server only has to issue the certificate and store that.

I am getting stuck on this step. I used this online resource to create a certificate for testing https://www.samltool.com/self_signed_certs.php. I tried to base64 encode it and make it a constant in my codebase. I then tried to base64 decode it and then use it to create a certificate. I was able to do that successfully. The connection failed and I think it's because I don't have an identity but when I go to create an identity it's asking for a private key.

Between the two options you shared above I would think id want the "authenticate the user" because I don't care about the device - just that the same user is trying to connect.

When you say "then you can use a single identity" does that mean I send the client the certificate I created on my backend and then the client uses a private key it creates on its device to then create an identity? Do I send both the private key and certificate used on the backend to the client which is then used to create an identity.

If the "authenticate the device" is easier im open to that. The goal is as i shared above "bob's devices cant connect to tom's devices and vice versa". The "something device specific into the identity’s certificate" could be some hash identifier similar to what I shared about TXT_RECORD.

You are mixing up certificate with digital identity. This is a common point of confusion. I talk about this, in a different context, in TN3161 Inside Code Signing: Certificates. I also touch on it, in the context of TLS, in TLS for App Developers.

To configure your server you’ll need a digital identity. That means a certificate plus the private key associated with the public key in that certificate. On Apple platforms that’s represented by the SecIdentity type.

Right now you’re working with just a certificate, via the SecCertificate type. You’ll need that code for the client side, but for the server side you need a digital identity. You usually get that in a PKCS#12 file (.p12 or .pfx) and import it using SecPKCS12Import.

Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"