Apple Cryptographic Libraries website screenshot 001

Apple yesterday announced it’s opened up its cryptographic libraries, the same ones used to protect iOS and OS X, to third-party developers. As reported by VentureBeat, the move is significant in that developers can now implement advanced security features into their apps, for free.

In addition to open-sourcing the cryptographic libraries, Apple back in the summer promised to open source its Swift programming language by the end of the year.

App makers can now use Apple’s Security Framework and Common Crypto libraries that handle encryption, tokenization, security certificates, management of public and private keys, and various other security protocols and trust policies.

The frameworks also support the storage of certificates and cryptographic keys in the keychain, which is a secure repository for sensitive user data. The code relies on the core crypto library, which Apple submitted for validation of compliance with the U.S. Federal Information Processing Standards (FIPS) 140-2 Level 1.

“Although Core Crypto does not directly provide programming interfaces for developers and should not be used by iOS or OS X apps, the source code is available to allow for verification of its security characteristics and correct functioning,” explains Apple.

Source: Apple via VentureBeat

  • Interesting.

  • Ángel Javier Esquivel

    Not only the most secure mobile OS, but with the safest third-party apps*
    *Where available

    • nyangejr

      Hmm, so that’s what they mean. Cool

  • Cody Cutrer

    This article is misleading. The libraries have always been accessible to use by app developers. The announcement is about open sourcing the code to them, for 3rd party audit. I.e. so people can look if there are “NSA backdoors”