One thing:
https://issues.jboss.org/browse/AGSEC-89
is not really something _on_ iOS; On the UnifiedPush Server the passphrase for the certifcate is stored plain text, should be improved by hashing and salting.

So, not sure if we want to remove that AGSEC-89 ticket


On Wed, Sep 18, 2013 at 5:56 PM, Matthias Wessendorf <matzew@apache.org> wrote:

<strike>

* AGSEC-6: Encryption for mobile devices

* AGSEC-89: Encryption for iOS

</strike>

One thing:
is not really something _on_ iOS; On the UnifiedPush Server the passphrase for the certifcate is stored plain text, should be improved by hashing and salting.

So, not if we want to remove that AGSEC-89 ticket

--
Matthias Wessendorf

blog: http://matthiaswessendorf.wordpress.com/
sessions: http://www.slideshare.net/mwessendorf
twitter: http://twitter.com/mwessendorf



--
Matthias Wessendorf

blog: http://matthiaswessendorf.wordpress.com/
sessions: http://www.slideshare.net/mwessendorf
twitter: http://twitter.com/mwessendorf