This was presented at the Swift Usergroup Netherlands. Would you like to speak/present? Visit https://swift.amsterdam for more information.
Should you pin? And if so: on what? On the certificate? On the public key? Should you follow http public Key pinning? And to which certificate: leaf, intermediate or root? And how can you easily do this with iOS? In this talk we will briefly go to the highlights on pinning on mobile and if you do it, how you can best apply it.
Jeroen Willemsen (https://www.twitter.com/commjoenie) is a security architect working at Xebia with a passion for mobile and risk management. He is dedicated to help developers, product owners and architects to take security seriously in their daily development life (but not too serious of course ;-)).