Using Secure Websocket (wss://) in ios 7.1.1 for an Application

Question

Level 1

0 points

Using Secure Websocket (wss://) in ios 7.1.1 for an Application

Hi,

We are developing an iOS application which uses websocket for posting the messages to UI. The setup is like we have a websocket sever listening on some dynamic port to which UI connects using web kit. Currently this socket is insecure i,e we are using ws:// and now we want to convert this to a secure channel, i,e wss://.

Below are the things which we have tried and which worked

1. Created a self-signed certificated and installed Manually on to the iOS device.

2. Now converted the port to secure channel (wss://) and included the same self signed certificate in Websocket server.

3. Now the websocket server connection is secure and communication works well.

Now we are trying to install the certificate(same certificate which was used in above worked setup) to application keystore using secItemAdd() and other security framework API's which no success. Though all the API's succeeds we are always getting the error that the certificate is not trusted when the actual communication with websocket server begins.

Along with the above we tried even creating a trust object and evaluating the same, even with this it gives same error.

Any ideas (or) suggestions on how to achieve secure websocket communication with iOS programmatically.

Thanks in Advance

Thanks,

Sunil

Posted on Jul 10, 2014 3:47 AM

Reply

Answer 1

sunil256 Author

Level 1

0 points

Jul 15, 2014 10:29 PM in response to sunil256

Hi,

Few more questions,

1. Can the selfsigned certificate be used in the iOS Application?

2. if yes for #1, Is there way to set selfsigned certificate as the Anchor for uiWebkit connections? I know that this can be done fro NSURLConnection objects.

Thanks,

Sunil

Reply