Apple Push Notification Service to Use 2048-bit TLS/SSL Certificates
More developer news from Apple today. Earlier it was announced App Store promo codes are now redeemable worldwide. Another email sent to developers mentions Push Notifications will now have use stronger encryption in the form of 2048-bit TLS/SSL certificates.
The email below states:
On December 22, 2010, the production Apple Push Notification service will begin to use a 2048-bit TLS/SSL certificate that provides a more secure connection between your provider server and the Apple Push Notification service.
To ensure you can continue to validate your server’s connection to the Apple Push Notification service, you will need to update your push notification server with a copy of the 2048-bit root certificate from Entrust’s website. This will not require a change to your iOS apps — this update only applies to provider servers.
If you have been successfully validating the certificate chain in the APNs sandbox environment, you already have the root certificate you need. Simply install the same root certificate on your production push provider servers.
More details on validating your provider communication channel can be found in the Provider Communication with Apple Push Notification service section of the Local and Push Notification Programming Guide.
Stronger security improvements for Push are always a good thing.