Upgrade to Pro — share decks privately, control downloads, hide ads and more …

App Transport Securityとローカルネットワーキング/iOSDC Japan 2017

Noritaka Kamiya
September 16, 2017
Programming
1
950

App Transport Securityとローカルネットワーキング/iOSDC Japan 2017

https://iosdc.jp/2017/node/1443

App Transport Securityとローカルネットワーキング
Noritaka Kamiya (@nolili)
App Transport Securityが発表された時、我々は戦慄しました。ローカルネットワーク上のIoTデバイスとHTTPで通信する手段を失ってしまうのです。 ATSを無効にしちゃうのか? それでApp Storeの審査は通るのか? libcurlならいけるのでは? HTTPクライアントを自分たちで作る?
このトークは2年間にわたるApp Transport Securityとの戦い、その記録です。

Noritaka Kamiya

September 16, 2017
Tweet

More Decks by Noritaka Kamiya

See All by Noritaka Kamiya
キラリと光るテクニック、アプリをデモするときの心構え/iOSDC Japan 2018
nolili
4
2.6k
WWDC Pre meeting
nolili
1
3k
FastLane with Swift
nolili
0
92
iOS Test Night #4
nolili
0
3.2k
SwiftFriendlyObjective-C/try! Swift Tokyo 2017 RejectCon
nolili
1
600
iOSアプリ開発のCI/CD環境とユビレジでのtry / CI CDNight
nolili
1
1.5k
ユビレジiOSアプリ開発のCI/CD環境 / iOS Test Night #1
nolili
5
2k
Modern Core Data(iOS 10)
nolili
0
1.2k
iOS I/O 2016 アクセサリといっしょ
nolili
1
1.4k

Other Decks in Programming

See All in Programming
7カ国語に対応したサービスでの翻訳管理システムの改善事例
punchdrunker
1
240
Swift Extension for Visual Studio Code
usamik26
1
150
ゲームQAはノーコードの自動化で救えるのか? / Why QA learns programming?
tomotaka_yamasaki
1
150
FlutterとMaterial3
dosukoi_android
0
290
オンサイトキックオフでロケットスタート〜貴重なリアル対面を活かすやり方と構造〜
sasakendayo
0
280
トランクベース開発の実現に向けた開発プロセスとCIパイプラインの継続的改善
aanrii
4
480
EmojiPicker触ってみた
napplecomputer
0
200
分岐を低減するinterface設計と発想の転換 / interface_design_idea.pdf
minodriven
11
3.1k
APIスキーマ設計Tipsと (新)リッチエディタについて
microcms
1
580
macのunicode正規化.pdf
mski_iksm
0
170
テキストエディタのブラウザ実装 / tokyo_study
oliver_diary
0
150
改めて整理するWebアプリのビルド・デプロイの基本
os1ma
3
500

Featured

See All Featured
Faster Mobile Websites
deanohume
296
29k
For a Future-Friendly Web
brad_frost
166
7.9k
Navigating Team Friction
lara
177
12k
The Brand Is Dead. Long Live the Brand.
mthomps
48
3k
ParisWeb 2013: Learning to Love: Crash Course in Emotional UX Design
dotmariusz
101
6.2k
A Modern Web Designer's Workflow
chriscoyier
689
180k
Infographics Made Easy
chrislema
236
17k
A Philosophy of Restraint
colly
193
15k
Atom: Resistance is Futile
akmur
256
24k
GraphQLとの向き合い方2022年版
quramy
22
10k
Six Lessons from altMBA
skipperchong
15
2.4k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
236
1.1M

Transcript

  1. "QQ5SBOTQPSU4FDVSJUZͱ
    ϩʔΧϧωοτϫʔΩϯά
    @iOS Developers Conference Japan 2017

    View Slide

  2. /PSJUBLB,BNJZB
    Twitter/Github @nolili
    Scrum Master & Software Engineer
    Ubiregi Inc.
    http://noli.li

    View Slide

  3. View Slide

  4. "HFOEB
    "QQ5SBOTQPSU4FDVSJUZ "54
    ͷ͓͞Β͍
    ϩʔΧϧωοτϫʔΩϯάͰͷ໰୊ͱରॲͷه࿥
    ϕετϓϥΫςΟεͱམͱ݀͠

    View Slide

  5. "QQ5SBOTQPSU4FDVSJUZ "54
    ͷ͓͞Β͍
    l"QQ5SBOTQPSU4FDVSJUZ͸σϑΥϧτͷ઀ଓཁ
    ݅Λنఆ͢ΔػೳͰ͢ɻ͜ΕʹΑΓɺ$'63-·ͨ͸
    /463-4FTTJPOͷ֤"1*ͷ࢖༻࣌ʹɺ"QQ͕࠷ྑ
    ͷํ๏Ͱ҆શͳ઀ଓΛߦ͏͜ͱ͕࣮֬ʹͳΓ·͢ɻl
    IUUQTJNBHFTBQQMFDPNKQCVTJOFTTEPDT
    [email protected]@(VJEFQEG

    View Slide

  6. "QQ5SBOTQPSU4FDVSJUZ "54
    ͷ͓͞Β͍
    ηΩϡΞͳϓϩτίϧҎ֎͸࢖༻Ͱ͖ͳ͍
    ੬ऑͳ҉߸ΞϧΰϦζϜ͸࢖༻Ͱ͖ͳ͍

    View Slide

  7. "QQ5SBOTQPSU4FDVSJUZ "54
    ͷ͓͞Β͍
    ӨڹΛड͚Δ
    63-4FTTJPO $PSF'PVOEBUJPO 8FC7JFXʜ
    ӨڹΛड͚ͳ͍
    4USFBN #4%TPDLFU

    View Slide

  8. ௚໘ͨ͠໰୊
    ϩʔΧϧωοτϫʔΫ಺ʹཱ͍ͬͯΔσόΠε )551
    αʔόʔʣͱ௨৴Ͱ͖ͳ͍ʂ
    σόΠε͸CPOKPVSͰ୳ࡧ͠ɺϗετ໊Ͱ63-Λ࡞੒
    ͠ɺ)551Ͱ௨৴

    View Slide

  9. ໰୊ʹͳΔέʔε
    J1IPOFͱαʔόʢσόΠεʣ͕Ͱ઀ଓ͢Δ
    ϗετ໊ͰΞΫηε͢Δ *1ΞυϨεͳΒ0,

    )551
    4FSWFS
    -"/

    View Slide

  10. ໰୊ʹͳΒͳ͍έʔε
    J1IPOFͱαʔόʢσόΠεʣͷؒʹ8FCαʔϏε͕
    ཱ͍ͬͯΔ
    4FSWFS
    FYBNQMFDPN
    )551
    $MJFOU

    View Slide

  11. J04Ͱͷ໰୊
    ϩʔΧϧωοτϫʔΫΛྫ֎ʹ͢Δํ๏͕ͳ͔ͬͨ
    'PSVNͰૌ͑Δ͕࣮૷ؒʹ߹Θͣ
    "54Λશͯແޮʹ͢Δ/4"MMPXT"SCJUSBSZ-PBET

    View Slide

  12. ࣌͸ա͗೥ͷ88%$ ݄

    "54͕"QQ4UPSFͷཁ݅ͱͳΔ͜ͱ͕Ξφ΢ϯε
    λΠϜϦϛοτ͸೥຤
    Ͳ͏͢Δ

    View Slide

  13. Կ΋͠ͳ͍Ͱઆಘ͢ΔҊ
    "QQ3FWJFXʹૌ͑Δ
    ʮզʑͷΞϓϦ͸ϩʔΧϧͷαʔόͱ઀ଓ͢Δඞཁ͕
    ͋Δʯ

    View Slide

  14. )551ΫϥΠΞϯτΛ࡞ΔҊ
    ௿ϨΠϠʔ"1*͸"54ͷӨڹΛड͚ͳ͍
    4XJGUͰ)551ΫϥΠΞϯτΛ࡞ͬͨ

    View Slide

  15. ͢Ͱʹ͋Δ)551ΫϥΠΞϯτΛ࢖͏Ҋ
    ࣮੷ͷ͋ΔϥΠϒϥϦ͸ͳ͍͔
    MJCDVSM
    CJUDPEFΛग़ྗͰ͖ΔΑ͏ʹϏϧυ͢Δ

    ʢকདྷͷඞਢԽʹඋ͑Δʣ

    View Slide

  16. ຊ໋ͷొ৔
    /4"MMPXT-PDBM/FUXPSLJOH

    View Slide

  17. /4"MMPXT-PDBM/FUXPSLJOH
    5%-͕MPDBMͷυϝΠϯΛྫ֎ͱͯ͠ڐՄ
    J04Ҏ্Ͱ༗ޮ
    J04ͱͷڞଘΛ͢Δ৔߹
    /4"MMPXT"SCJUSBSZ-PBETͱͷซ༻͕ඞཁ
    MPDBMIPTU΋"54ͷྫ֎ͱͳΔ

    View Slide

  18. -(5.ʂ

    View Slide

  19. /4
    /FU4FSWJDF
    /FU4FSWJDFͱ"QQ5SBOTQPSU4FDVSJUZ

    View Slide

  20. /4
    /FU4FSWJDF
    /FU4FSWJDF#SPXTFS
    /FU4FSWJDFSFTPMWF
    /FU4FSWJDFIPTU/BNF

    View Slide

  21. class Browser: NSObject, NetServiceBrowserDelegate, NetServiceDelegate {
    var serviceBrowser = NetServiceBrowser()
    var services = [NetService]()
    func start() {
    serviceBrowser.delegate = self
    serviceBrowser.
    searchForServices(ofType: "_http._tcp.", inDomain: "local")
    }
    func netServiceBrowser(_ browser: NetServiceBrowser, didFind service:
    NetService, moreComing: Bool) {
    services.append(service)
    service.delegate = self
    service.resolve(withTimeout: 1.0)
    }
    func netServiceDidResolveAddress(_ sender: NetService) {
    print(sender.hostName!, sender.addresses!)
    }
    }

    View Slide

  22. class Browser: NSObject, NetServiceBrowserDelegate, NetServiceDelegate {
    var serviceBrowser = NetServiceBrowser()
    var services = [NetService]()
    func start() {
    serviceBrowser.delegate = self
    serviceBrowser.
    searchForServices(ofType: "_http._tcp.", inDomain: "local")
    }
    func netServiceBrowser(_ browser: NetServiceBrowser, didFind service:
    NetService, moreComing: Bool) {
    services.append(service)
    service.delegate = self
    service.resolve(withTimeout: 1.0)
    }
    func netServiceDidResolveAddress(_ sender: NetService) {
    print(sender.hostName!, sender.addresses!)
    }
    }
    NZEFWJDFMPDBM

    View Slide

  23. /4
    /FU4FSWJDF
    IPTU/BNFͷ຤ඌʹSPPUΛ͕ࣔͭ͘͢
    ͕͍͍ͭͯΔ63-ͱ͸௨৴ෆՄ
    ྫNZEFWJDFMPDBM

    View Slide

  24. ϕετϓϥΫςΟε
    J04Λαϙʔτ͢Δ৔߹
    NSAppTransportSecurity

    NSAllowsArbitraryLoads

    NSAllowsLocalNetworking


    View Slide

  25. ϩʔΧϧωοτϫʔΩϯάΛΑΓ҆શʹ͢ΔͨΊʹ
    ূ໌ॻͷద੾ͳ؅ཧΛߦ͍ɺηΩϡΞͳ઀ଓΛݕ౼͢Δ
    ࣗݾॺ໊ূ໌ॻΛൃߦͰ͖Δػث΋ొ৔͍ͯ͠Δ

    View Slide

  26. View Slide

  27. Ԇظ
    "54͕"QQ4UPSFͷཁ݅ͱͳΔ͜ͱ͕Ξφ΢ϯε
    Ԇظʢ࣍ͷλΠϜϦϛοτ͸ະఆʣ
    ౰໘͸/4"MMPXT"SCJUSBSZ-PBET͕ڐ͞ΕΔ

    View Slide

  28. 88%$ͷָ͠Έํ
    8IBU`TOFXJOTFDVSJUZʢඞݟʣ
    1SJWBDZBOE:PVS"QQT
    ϥϘͰࠔ͍ͬͯΔ͜ͱΛ૬ஊ͢Δ

    View Slide

  29. 3FMBUFE4FTTJPO

    View Slide

  30. ࢀߟจݙͳͲ
    *OGPSNBUJPO1SPQFSUZ-JTU,FZ3FGFSFODF
    IUUQTEFWFMPQFSBQQMFDPNMJCSBSZDPOUFOUEPDVNFOUBUJPO(FOFSBM3FGFSFODF
    *OGP1MJTU,FZ3FGFSFODF"SUJDMFT$PDPB,FZTIUNM
    "QQ5SBOTQPSU4FDVSJUZBOEMPDBMOFUXPSLJOH
    IUUQTGPSVNTEFWFMPQFSBQQMFDPNUISFBE
    #POKPVS0WFS7JFX
    IUUQTEFWFMPQFSBQQMFDPNMJCSBSZDPOUFOUEPDVNFOUBUJPO$PDPB$PODFQUVBM
    /FU4FSWJDFT"[email protected]

    View Slide

  31. "QQ5SBOTQPSU4FDVSJUZͱ
    ϩʔΧϧωοτϫʔΩϯά
    @iOS Developers Conference Japan 2017

    View Slide