You can further limit the set of server certificates your app trusts by pinning their public-key identities in your app.
As a result, if the server deploys new certificates that alter the public keys, your app will refuse to connect.
You can also consider pinning more than one public key, especially when pinning server identities.
The public key is expressed as the Base64-encoded SHA-256 digest of an X.509 certificateâs DER-encoded ASN.1 Subject Public Key Info structure.
To satisfy the pinning requirement for a connection to example.net , the server certificate must include one of those keys.6 дней, 9 часов назад @ developer.apple.com