Two-thirds of iOS apps do not use the Apple technology that helps to support encrypted communication program with the server. This is evidenced by the report of the company Wandera, specializing in cyber security.
According to researchers at Wandera, were analyzed more than 30 thousand applications. The results showed that 67.7% of applications deliberately disable a protective function default iOS. We are talking about ATS (App Transport Security).
Apple introduced the ATS with the release of iOS 9, which took place in September 2015. In essence, the purpose of this function is to block the insecure HTTP connection between an application and a remote server of the developer.
At WWDC in 2016, Apple announced that it wants to make ATS a mandatory feature for iOS apps from January 2017. However, in December 2016, the Corporation abandoned these plans.
However, ATS is enabled by default, therefore, developers must manually deactivate it when writing their code.
Wandera according to the report, 27% of the analysed applications currently use ATS to provide secure communications between the server and the program.
About 5.3% used ATS, but turned it off specifically for some domains.
Read more •••