Forum

Post a new question

Categories:

Tags:

SSL not supporting the TLS 1.2 protocol so tvOS/ iOS is unsupported

SSL
Pepijn 2015-12-14 19:58:52 UTC in Nimble Streamer

Hello,

I was implementing Nimble and got another problem.

Since iOS 9 all apps are required to use TLSv1.2 SSL.
The Nimble server supports many protocols but not the TLSv1.2 protocol.
tvOS has the same policy.

Can you add the TLSv1.2 protocol to Nimble? It's very important because I can't use Nimble in my production environment until TLSv1.2 is supported.

By the way: the SSL integration in Nimble isn't very safe. Screenshot here: i.imgur.com/UWpcV7E.png
You can test your SSL implementation on www.ssllabs.com/ssltest/
I hope you can fix these SSL problems soon if that is possible.

Thank you again for all your help!
Pepijn

Pepijn 2015-12-14 20:53:42 UTC

I forget to mention it in my last post but iOS 9 / tvOS apps also require forward secrecy.

Thank you

Max 2015-12-15 06:14:45 UTC

Hello,

We're going to add support for TLSv1.2 in the next release, please stay tuned.

Thank you.

Max 2015-12-16 09:20:16 UTC

Hello,

Please upgrade to Nimble 2.12.0-16, it should support TLSv1.2 protocol.

Thanks.

Pepijn 2015-12-16 19:38:19 UTC

Thank you! TLSv1.2 is working.

Nimble still has no forward secrecy enabled. Hope you can fix this.

Thank you!

Alex Pokotilo 2015-12-17 00:39:30 UTC

Have you tested your server with IOS 9 ?
Forward security is a complex term. Please give us more details about your concern. How did you test that FS not supported ?

Pepijn 2015-12-19 17:55:24 UTC

I tested it using SSL Labs and using iOS and it didn't work.

I made an exception in my info.plist for forward secrecy on my live server so it works now.

Thank you for implementing TLSv1.2!

Post a reply



This website or its third-party tools use cookies, which are necessary to its functioning and required to achieve the purposes illustrated in the Privacy Policy. If you want to know more or withdraw your consent to all or some of the cookies, please refer to the Privacy Policy.
By closing this banner, scrolling this page, clicking a link or continuing to browse otherwise, you agree to the use of cookies.