tags:

views:

1973

answers:

3
+2  Q: 

iPhone client certificate.

I would like to verify that an app I am writing is running on an iPhone. What would be perfect is this: Apple baked an SSL client certificate into each iphone which can be authenticated by a receiving server. I this the case?

I have not started researching this yet, I will update with anything I find.

UPDATE: Here is some Apple documentation on certificates and keychains. So:

In iPhone OS, Keychain Services checks an application’s signature before giving it access to a keychain, and lets an application have access only to its own keychain items (with the possible exception of items for which the application has obtained persistent references). In iPhone OS, the user is never asked to authenticate and no Keychain Access utility is provided by Apple.

+1  A: 

I think that most sites that do this detection do so by looking at the HTTP_USER_AGENT variable.

Greg Hurlman  2008-12-10 20:42:26
Which can be spoofed.
erickson  2008-12-10 20:43:36
Yea, I was looking for something more secure than this.
Martin Redmond  2008-12-10 21:04:22
Secure ain't gonna happen unless you install something onto each phone that visits your site.
Greg Hurlman  2008-12-15 13:49:25
+1  A: 
erickson  2008-12-10 20:43:03
A: 

Pertaining to what Greg mentioned above. You can definitely add a user agent to your header which we did in our application. There's more to the whole http connection code, but here's one way you could add the user agent to your header:

NSMutableURLRequest *request;
NSMutableDictionary *headers;
headers = [[[NSMutableDictionary allocWithZone:[self zone]] init] autorelease];
[headers setValue:@"YourApp/1.0 (iPhone)" forKey:@"User-Agent"];
[request setAllHTTPHeaderFields:headers];

Again, note that this code is only focused on the header bit, so you'll have to implement the complete http solution.

Rob  2008-12-11 01:39:30
I fail to see what you are trying to accomplish here. Any http header can be forged by a normal web browser.
Rook  2010-05-05 20:37:52

related questions

How do we get arround Apple's decission to skip sms templates for iPhone?
iPhone App Crashing - Error Question
Can I write native iPhone apps using Python
Does the Iphone 1/2 have a compass inside?
How do you beta test an iphone app?
Is it just the iPhone simulator that is restricted to intel only Mac's?
iPhone App Minus App Store?
Deleting messages from Exchange IMAP mailbox on iPhone
Is there a multiplatform framework for developing iPhone / Android applications?
How can I launch the Google Maps iPhone application from within my own native application?
Tips for a successful AppStore submission?
iPhone app that access the Core Location framework over web
Virtual Mac?
What's a good machine for iPhone development?
How can I develop for iPhone using a Windows development machine?
Recommended iPhone Development Resources
Best Wiki for Mobile Users
How to programmatically send SMS on the iPhone?
iPhone - Exchange Calendars in Public Folders
iPhone web applications, templates, frameworks?
Understanding reference counting with Cocoa / Objective C
How-to articles for iPhone development, Objective-C
What are the correct pixel dimensions for an apple-touch-icon?
How do I give my web sites an icon for iPhone?
iPhone app in landscape mode