Apple updates Mac App Store security certificate to fix security problems; Developers to use updated validation code in apps

By

Apple updated the Mac App Store security certificate with a 2035 expiration date after users reported issues caused by an expired certification. Apple is also working with developers to make sure their apps use the updated validation code.

Apple issued a new Mac App Store security certificate with an expiration date of 2035 to address problems caused by an expired certification, reported Tech Crunch. The expired security certificate is apparently one of the causes of error messages that users kept receiving when they try to open apps downloaded from the Mac App Store. Users reportedly had to delete and reinstall apps affected by the security glitch.

But it seems that an expired security certificate is not the only problem. Apple recently updated the Mac App Store's security certificate from the old SHA-1 code to the more secure SHA-2 in September. However, developers of the affected apps reportedly used the older OpenSSL version that only supports SHA-1 and not the new SHA-2 according to The Verge.

"Apple recently upgraded the Mac App store certificate to a more secure SHA-2 algorithm," Thomas Reed of Malwarebytes Labs said. "However, some apps were using a version of Open SSL that didn't support that and thus were still using an older SHA-1 certificate." Apple is currently working with developers to make sure they use the updated validation code in their apps.

The security glitch caused by the expired certificate was first discovered by developer Paul Haddad. Users reported on Twitter and Apple developer forums that they are experiencing problems when opening their downloaded apps. While some users just disconnected and reconnected to the Mac App Store to solve the problem, others had to reinstall the affected apps. Some even had to reboot their devices.

TechNewsWorld said that the issue showed that Apple needed to have an effective mode of communication with the developer community with regards to the Mac App Store. The company could create a Mac App Store Twitter account for easier collaboration with users regarding Mac App Store-related problems and concerns.

Some of the affected Mac App Store apps were 1Password, Acorn, Byword, Daisy Disk, and Tweetbot.It was added in the report that the security problem will likely not have much effect on Apple's reputation in the long run.

© 2024 VCPOST.com All rights reserved. Do not reproduce without permission.

Join the Conversation

Real Time Analytics