![]() Support for JWKS URI allowing the public keys in the keyset to exported on an endpoint to be used to obtain the public keys for a relying party. ![]() Add options to include an issued-at (" iat") and subject (" sub") claims in Approov tokens as these are needed for some backend API integrations.Change the output of approov token -check to be formatted more clearly, and provide times in a human readable format.Change loggable tokens to have a status claim instead of an error claim, as some statuses are valid and the use of the word error can be confusing.Implement deletion of app instance secure strings if the new definition is provided as the empty string.New signature analysis capabilities allowing better detection of certain hooking frameworks.Enhanced app signature analysis for iOS to detect certain ways of installing a modified app, including TrollStore.Improved debug detection mechanisms on iOS.Improved Android Magisk package detection for the latest versions when QUERY_ALL_PACKAGES is available.Improvements to Android framework detections, including new detections for Riru and EdXposed.Added approov sdk -getClientPackage option to obtain Javascript packages for the web protection integration options.Improved approov sdk -getAccessedURLs option to also show URLs used when the app is launched for the first time.New approov registration -appex option to register any iOS app extensions.Approov is able to remember the integrity state to avoid the latency or quota usage of very frequent Play Integrity attestations. Approov manages the collection of Play Integrity tokens and their checking on the backend, providing you with the standard valid Approov tokens or transmission of runtime secrets to indicate that Play Integrity checks have been passed. You may choose to use this to provide an additonal layer of protection over the existing Approov capabilities. This new Google protection replaces SafetyNet and allows measurement of the app and device integrity. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |