We use badly documented low-level functions for performing TLS operations required to support Shalon. There we set the default ATS profile:
|
/* |
|
The default session configuration is not a secure one and uses |
|
TLSv1.0, therefore we should use a more secure configuration, such |
|
as ATS (App Transport Security). |
|
*/ |
|
let config = kSSLSessionConfig_ATSv1 |
Which is better than the default. It should be configurable like the high-level URLSession connections via ATS configuration in the information property list (Info.plist) of the application.
We use badly documented low-level functions for performing TLS operations required to support Shalon. There we set the default ATS profile:
PrivacyKit/PrivacyKit/Tls.swift
Lines 273 to 278 in 358201c
Which is better than the default. It should be configurable like the high-level
URLSessionconnections via ATS configuration in the information property list (Info.plist) of the application.