This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Does Apigee support App Transport Security (ATS)?

Posted on 04-11-2017 01:35 PM
WILLIT51
New Member
Reply posted on --/--/---- --:-- AM

Someone recently asked me if Apigee support Apple's App Transport Security (ATS) standards. If I understand ATS correctly, I believe this essentially amounts to supporting the following on our virtual hosts:

• TLS v1.2

• Strong crypto—AES-128 and SHA-2

• Forward secrecy—ECDHE

Apigee virtual hosts should support all of these by default, so I assume the answer is yes. Would you agree?

We have already disabled SSLv3 and earlier. I suppose we could also disable weak ciphers if this is necessary. Any recommendations?

1 2 6,049
Topic Labels
2 REPLIES 2

Posted on --/--/---- --:-- AM
DChiesa
Staff
Reply posted on --/--/---- --:-- AM

I don't know about Apple's ATS, but you are correct that you have control over the proto, the ciphers, and the crypto in virtual hosts in Apigee Edge. So you should be able to configure what you need.

Are you experiencing any problems?

0 Likes

Posted on --/--/---- --:-- AM
WILLIT51
New Member
In response to DChiesa
Reply posted on --/--/---- --:-- AM

No, no problems. Just doing some preliminary research for an upcoming effort.

0 Likes