Apple Sets Deadline To Enforce HTTPS Connections For iOS Apps

At the security presentation at Apple’s Worldwide Developer’s Conference, the company has revealed the deadline for all apps present in the App Store to switch o an important security feature known as App Transport Security by January 1, 2017.
App Transport Security or ATS is a feature which Apple has debuted in iOS 9. When the ATS is enabled, it forces the app to connect to the web services over an HTTPS connection rather than HTTP, which helps in keeping the user data secure while in transit by encrypting it.
The ‘S’ available in HTTPS stands for secure, and you will very often see that it appears on your browser when you are logging into your email or banking accounts. However, mobile apps are not often transparent with users about the security of their web connections, and it can be extremely difficult to tell if an app is connected via HTTP or HTTPS.
Enter ATS, which is allowed by default for iOS 9. However, developers can still go on to switch off ATS and allow their apps to send data over an HTTP connection, that is, until the end of 2016. 
At the end of this year, the company will make ATS mandatory for all developers who hope to submit their apps to the App Store. App developers who have been wondering when the hammer would drop on HTTP can now take a sigh of relief as the company now has a clear deadline, and users too will be able to relax with the knowledge that the secure connection will soon be forced on all the available apps on the iPhones and iPads.
In requiring developers to use HTTPS, Apple is currently joining a large movement in order to secure data as it travels online. While it is quite common to have a security protocol on login pages, several websites still use the plain old HTTP for most of their connections. This is slowly and steadily changing as numerous sites make the arduous transition to HTTPS.

Build smarter apps with Machine Learning, Bots, Cognitive Services - Start free.

Start Learning Now