{"id":1257,"date":"2017-01-20T12:02:57","date_gmt":"2017-01-20T03:02:57","guid":{"rendered":"http:\/\/androiphone.uvs.jp\/?p=1257"},"modified":"2021-01-21T17:25:52","modified_gmt":"2021-01-21T08:25:52","slug":"ios-ats%e3%82%92%e3%81%a9%e3%81%86%e3%81%99%e3%82%8b%e3%81%8b%e3%83%ac%e3%83%b3%e3%82%bf%e3%83%ab%e3%82%b5%e3%83%bc%e3%83%90%e3%83%bc%e3%82%92%e5%af%be%e5%bf%9c%e3%81%95%e3%81%9b%e3%82%8b%e3%80%80-2","status":"publish","type":"post","link":"https:\/\/androiphone.uvs.jp\/?p=1257","title":{"rendered":"[iOS] ATS\u3092\u3069\u3046\u3059\u308b\u304b?\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u30fc\u3092\u5bfe\u5fdc\u3055\u305b\u308b\u3000\u305d\u306e2"},"content":{"rendered":"<p><span style=\"font-size: 12pt;\">\u3000<a href=\"http:\/\/androiphone.uvs.jp\/?p=1236\">\u305d\u306e1<\/a>\u3067\u306fATS\u3067Apple\u306b\u8aac\u660e\u3057\u306a\u304f\u3066\u6e08\u3080\u7406\u60f3\u7684\u306a\u4ed5\u69d8\u3092\u30c0\u30fc\u3063\u3068\u66f8\u304d\u307e\u3057\u305f\u3002<\/span><\/p>\n<p>\u3067\u306f\u3001\u5b9f\u969b\u3001\u81ea\u5206\u304c\u501f\u308a\u3066\u3044\u308b\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u30fc\u306f\u3069\u3046\u306a\u3093\u3067\u3057\u3087\u3046?<a href=\"http:\/\/androiphone.uvs.jp\/?p=1236\">\u305d\u306e1<\/a>\u306b\u3042\u3063\u305f<a href=\"https:\/\/www.ssllabs.com\/ssltest\/\">SSL Server Test<\/a>\u306e\u30b5\u30a4\u30c8\u3067\u30c1\u30a7\u30c3\u30af\u3057\u3066\u898b\u307e\u3057\u305f\u3002\u307e\u305a\u306f\u3001\u3053\u306e\u30b5\u30a4\u30c8\u3067\u3082\u5229\u7528\u3057\u3066\u3044\u308bserverqueen\u3001\u3082\u3046\u4e00\u3064\u306f\u5225\u306b\u5229\u7528\u3057\u3066\u3044\u308bvalue-server\u3067\u3059\u3002\u4e21\u65b9\u3068\u3082\u683c\u5b89\u30b5\u30fc\u30d0\u30fc\u3067\u3059\u304c\u3001\u3069\u3093\u306a\u611f\u3058\u3067\u3057\u3087\u3046\u304b?<\/p>\n<p><span style=\"color: #0000ff;\"><strong><span style=\"font-size: 18pt;\">(1) ServerQueen<\/span><\/strong><\/span><\/p>\n<p>\u307e\u305a\u3001ServerQueen\u3067\u3059\u3002Protocols\u306eTLS1.2\u304cNO\u3068\u306a\u3063\u3066\u3044\u307e\u3059\u306d(\u7b11)\u3002\u3053\u306e\u6642\u70b9\u3067\u3001Apple\u3078\u306e\u8aac\u660e\u306a\u3057\u3067\u306e\u5bfe\u5fdc\u306f\u7121\u7406\u306a\u306e\u3067\u8ae6\u3081\u307e\u3057\u3087\u3046\u3002ATS\u3092\u7121\u52b9\u306b\u3059\u308b\u304b\u3001TLS\u3092\u4e0b\u3052\u308b\u304b\u3067\u3059\u304c\u3001\u3044\u305a\u308c\u3082\u8aac\u660e\u304c\u5fc5\u9808\u3067\u3059\u3002<\/p>\n<p><strong><span style=\"font-size: 18pt; color: #0000ff;\">(2) Value-Server<\/span><\/strong><\/p>\n<p>\u6b21\u306bValue-Server\u3067\u3059\u3002TLS1.2\u306fOK\u306e\u3088\u3046\u3067\u3059\u3002\u3064\u304e\u306b\u307f\u308b\u306e\u304cCipher suite(\u6697\u53f7\u5316\u30b9\u30a4\u30fc\u30c4)\u3067\u3059\u3002\u9375\u4ea4\u63db\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u304cECDHE\u306b\u5bfe\u5fdc\u3057\u3066\u3044\u307e\u305b\u3093\u3002\u3053\u306e\u307e\u307e\u3067\u306f\u4f7f\u3048\u307e\u305b\u3093\u3002\u3053\u3053\u3067\u30c9\u30e1\u30a4\u30f3\u6bce\u306bNSExceptionRequiresForwardSecrecy\u3092NO\u306b\u8a2d\u5b9a\u3057\u307e\u3059\u3002<\/p>\n<blockquote><p>An optional Boolean value for overriding the requirement that a server support perfect forward secrecy (PFS). Use this key to describe your app\u2019s intended connection behavior for a domain whose security attributes you have control over.<\/p>\n<p>Default value is YES, which limits the accepted ciphers to those listed in <span class=\"content_text\"><a href=\"https:\/\/developer.apple.com\/library\/content\/documentation\/General\/Reference\/InfoPlistKeyReference\/Articles\/CocoaKeys.html#\/\/apple_ref\/doc\/uid\/TP40009251-SW35\" data-renderer-version=\"1\">ATS Configuration Basics<\/a><\/span>.<\/p>\n<p>Setting the value to NO results in the following ciphers, which do not support FS, also being accepted:<\/p>\n<ul>\n<li>TLS_RSA_WITH_AES_256_GCM_SHA384<\/li>\n<li>TLS_RSA_WITH_AES_128_GCM_SHA256<\/li>\n<li>TLS_RSA_WITH_AES_256_CBC_SHA256<\/li>\n<li>TLS_RSA_WITH_AES_256_CBC_SHA<\/li>\n<li>TLS_RSA_WITH_AES_128_CBC_SHA256<\/li>\n<li>TLS_RSA_WITH_AES_128_CBC_SHA<\/li>\n<\/ul>\n<\/blockquote>\n<p>\u4e0a\u306f\u3001NSExceptionRequiresForwardSecrecy\u306b\u3064\u3044\u3066\u306e\u516c\u5f0f\u8aac\u660e\u3067\u3059\u304c\u3001NO\u306b\u3059\u308b\u3068\u3001\u4e0a\u306e6\u3064\u306e\u6697\u53f7\u5316\u30b9\u30a4\u30fc\u30c4\u304c\u5229\u7528\u3067\u304d\u308b\u69d8\u306b\u306a\u308a\u307e\u3059\u3002\u3053\u306e\u30d7\u30ed\u30d1\u30c6\u30a3\u306b\u306f<\/p>\n<blockquote><p><em>Use of this key triggers App Store review and requires justification.<\/em><\/p><\/blockquote>\n<p>\u306e\u6587\u8a00\u304c\u306a\u3044\u306e\u3067\u3001\u5909\u66f4\u3057\u3066\u3082Apple\u3078\u306e\u8aac\u660e\u304c\u4e0d\u8981\u3067\u3059\u3002<\/p>\n<p>\u3053\u306e\u3088\u3046\u306b\u3001\u306a\u3093\u3068\u304b\u3059\u308c\u3070\u4f7f\u3048\u308b\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u30fc\u3082\u3042\u308c\u3070\u3001\u5168\u304f\u7121\u7406\u306a\u3068\u3053\u308d\u3082\u3042\u308a\u307e\u3059\u3002\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u30fc\u306b\u30a2\u30af\u30bb\u30b9\u3059\u308b\u30a2\u30d7\u30ea\u3092\u4f5c\u308b\u969b\u306f\u3001\u501f\u308a\u308b\u6642\u306b\u3088\u304f\u8abf\u3079\u3066\u304a\u304f\u306e\u304c\u3044\u3044\u3068\u601d\u3044\u307e\u3059\u3002<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u3000\u305d\u306e1\u3067\u306fATS\u3067Apple\u306b\u8aac\u660e\u3057\u306a\u304f\u3066\u6e08\u3080\u7406\u60f3\u7684\u306a\u4ed5\u69d8\u3092\u30c0\u30fc\u3063\u3068\u66f8\u304d\u307e\u3057\u305f\u3002 \u3067\u306f\u3001\u5b9f\u969b\u3001\u81ea\u5206\u304c\u501f\u308a\u3066\u3044\u308b\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u30fc\u306f\u3069\u3046\u306a\u3093\u3067\u3057\u3087\u3046?\u305d\u306e1\u306b\u3042\u3063\u305fSSL Server Test\u306e\u30b5\u30a4\u30c8\u3067\u30c1\u30a7\u30c3\u30af\u3057\u3066\u898b\u307e\u3057 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_locale":"ja","_original_post":"http:\/\/androiphone.uvs.jp\/?p=1257","footnotes":""},"categories":[7],"tags":[],"class_list":["post-1257","post","type-post","status-publish","format-standard","hentry","category-ios","ja"],"_links":{"self":[{"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=\/wp\/v2\/posts\/1257","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1257"}],"version-history":[{"count":11,"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=\/wp\/v2\/posts\/1257\/revisions"}],"predecessor-version":[{"id":3635,"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=\/wp\/v2\/posts\/1257\/revisions\/3635"}],"wp:attachment":[{"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1257"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1257"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/androiphone.uvs.jp\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1257"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}