Github Use SSL Client Certificate to improve security · Issue #847 · nextcloud/i...
source link: https://github.com/nextcloud/ios/issues/847
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Expected behaviour
Option to configure a Nextcloud account to include an SSL User's Private Key and Certificate to connect to the server.
The use of an SSL Client certificate greatly improves the security. It protects the SSL connection against SSL decryptors deployed here and there and many other threats. It also improves the security in the mobile device by moving the private key to a memory space where nothing can touch it.
As a first step, it should be easy to add this as an extra option to account but still require the password or the access token. In a further release, it would be possible to use the certificate as the only authentication but that requires more effort and more config in the SSL engine facing the Nextcloud service as well as in the Nextcloud config itself to map certificates names to usernames.
Actual behaviour
To use such a client side certificate is not an option as of now
Steps to reproduce
iOS version
App version
Latest
Server configuration
Operating system:
N/A
Web server:
N/A
Database:
N/A
PHP version:
N/A
Nextcloud version: (see Nextcloud admin page)
N/A
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK