Support for App Transport Security

  Last updated 2018-08-03

Apple uses App Transport Security (ATS) to improve the security of connections between web services and applications installed on devices using iOS 9 or later, as well as OS X 10.11 (El Capitan) and later. Fastly is fully compliant with all ATS requirements. You shouldn't run into any issues supporting iOS or OS X users while using our service.

Results from the ATS diagnostics tool

We used Apple's ATS diagnostics tool to ensure that Fastly is compliant with all ATS requirements. You can review the output from the diagnostics tool below.

1$ /usr/bin/nscurl --ats-diagnostics https://www.fastly.com
2Starting ATS Diagnostics
3

4Configuring ATS Info.plist keys and displaying the result of HTTPS loads to https://www.fastly.com.
5A test will "PASS" if URLSession:task:didCompleteWithError: returns a nil error.
6

7Use '--verbose' to view the ATS dictionaries used and to display the error received in URLSession:task:didCompleteWithError:.
8================================================================================
9

10Default ATS Secure Connection
11---
12ATS Default Connection
13

14Result : PASS
15---
16

17================================================================================
18Allowing Arbitrary Loads
19

20---
21Allow All Loads
22

23Result : PASS
24---
25

26================================================================================
27

28Configuring TLS exceptions for www.fastly.com
29

30---
31TLSv1.2
32

33Result : PASS
34---
35

36---
37TLSv1.1
38

39Result : PASS
40---
41

42---
43TLSv1.0
44

45Result : PASS
46---
47

48================================================================================
49

50Configuring PFS exceptions for www.fastly.com
51

52---
53Disabling Perfect Forward Secrecy
54

55Result : PASS
56---
57

58================================================================================
59

60Configuring PFS exceptions and allowing insecure HTTP for www.fastly.com
61

62---
63Disabling Perfect Forward Secrecy and Allowing Insecure HTTP
64

65Result : PASS
66---
67

68================================================================================
69

70Configuring TLS exceptions with PFS disabled for www.fastly.com
71

72---
73TLSv1.2 with PFS disabled
74

75Result : PASS
76---
77

78---
79TLSv1.1 with PFS disabled
80

81Result : PASS
82---
83

84---
85TLSv1.0 with PFS disabled
86

87Result : PASS
88---
89

90================================================================================
91

92Configuring TLS exceptions with PFS disabled and insecure HTTP allowed for www.fastly.com
93

94---
95TLSv1.2 with PFS disabled and insecure HTTP allowed
96

97Result : PASS
98---
99

100---
101TLSv1.1 with PFS disabled and insecure HTTP allowed
102

103Result : PASS
104---
105

106---
107TLSv1.0 with PFS disabled and insecure HTTP allowed
108

109Result : PASS
110---
Was this guide helpful?

Do not use this form to send sensitive information. If you need assistance, contact support. This form is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.