TLS server certificates must present the DNS name of the server in the Subject Alternative Name extension of the certificate. SHA-1 signed certificates are no longer trusted for TLS.
TLS server certificates and issuing CAs must use a hash algorithm from the SHA-2 family in the signature algorithm.Certificates using RSA key sizes smaller than 2048 bits are no longer trusted for TLS. TLS server certificates and issuing CAs using RSA keys must use key sizes greater than or equal to 2048 bits.
Briefly below these are summarised, and our response.Ĭurrent Apple requirements for iOS 13 and MacOS 10.15:Īll TLS server certificates must comply with these new security requirements in iOS 13 and macOS 10.15: As you know Apple have made some changes to the CA and cert requirements for iOS and MacOS. Hi everyone, thank you for your feedback and your patience in this matter.
0 kommentar(er)
