iPhone客户端证书 [英] iPhone client certificate

问题描述

我想验证我所撰写的应用程式是否在iPhone上执行。什么是
完美的是这样：苹果公司SSL证书到每个iphone可以通过接收服务器认证。

I would like to verify that an app I am writing is running on an iPhone. What would be perfect is this: Apple baked an SSL client certificate into each iphone which can be authenticated by a receiving server. I this the case?

我还没有开始研究这个，我会更新我发现的任何东西。

I have not started researching this yet, I will update with anything I find.

UPDATE：
这里是一些Apple证书和钥匙串文档。所以：

UPDATE: Here is some Apple documentation on certificates and keychains. So:

在iPhone操作系统中，Keychain Services在授予访问钥匙串的权限之前检查应用程序的签名，它自己的钥匙串项（可能除了应用程序已获得持久引用的项）。
在iPhone操作系统中，用户从不被要求进行身份验证，并且没有Apple提供的Keychain Access实用程序。

In iPhone OS, Keychain Services checks an application’s signature before giving it access to a keychain, and lets an application have access only to its own keychain items (with the possible exception of items for which the application has obtained persistent references). In iPhone OS, the user is never asked to authenticate and no Keychain Access utility is provided by Apple.

推荐答案

信任的平台模块可以根据您的需要正在寻找。它被称为远程证明。

A trusted platform module can do something along the lines that you are seeking. It's called remote attestation.

然而，受信任计算的接受程度有限，消费者认为这是供应商继续对消费者拥有的设备和数据进行控制的一种方式。苹果勉强承认DRM是愚蠢的，以及TPM的额外成本，将建议iPhone不支持此功能。

However, acceptance of trusted computing is limited—savvy consumers see it as a way for vendors to continue to exercise control over equipment and data that the consumer owns. Apple's grudging acknowledgment that DRM is stupid, as well as the extra cost of a TPM, would suggest the iPhone doesn't support this.

这篇关于iPhone客户端证书的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！