Hi all,
I’m trying to find a documentation about the supported encryption algorithms for p12 files to be imported in iOS.
I can see in iOS 18 changelog that AES-256-CBC is now supported, but cannot find a detailed view on which list of algorithms are supported. Would appreciate it if you could point me in the right direction!
Thanks in advance
I was curious about this myself, so I asked about it internally. AFAICT there isn’t official documentation as to what’s supported. If you’d like to see that, I encourage you to file a bug against the docs [1]. Please post your bug number, just for the record.
In the absence of official documentation, my understanding is that iOS 18 added support for:
-
SHA224, SHA256, SHA384, and SHA512 for the MAC.
-
PBES2 (from RFC 8018) with AES-256 CBC and PRF HMAC-SHA256.
The way I think of this is that didn’t add all the new stuff, but rather just enough stuff to support the new OpenSSL defaults.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"
[1] Hmmm, but which docs? I think that the Apple Platform Security would be the best place for this but, hey, it’s your bug so you get to choose (-: