Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

iOS Do I really need an ERN to publish an iOS in the app store?

davidbaker

davidbaker

macrumors newbie
Original poster
Dec 10, 2015
2
0
I'm new to this forum, so I'm not sure if this is the correct place or way to ask. Forgive me if it's not. I have an app in the app store that uses the Flickr API and a friend of mine recently pointed me to this blog post about how if I use an API I need an ERN or something like that:https://carouselapps.com/2015/12/09/mac-ios-applications-breaking-rules-removed

I asked the freelancer coder that built it for me and he said that he knew nothing about it. I'm confused. Is this true? do I need to get an ERN to publish an app in the iOS store when it's using the Flickr API?
 
Depend on whether you have the word "need" defined by your lawyer, or by what 99% of iOS developers actually do to get their simple API-using iOS app successfully approved for App store distribution.
 
Apple app approval seems to be a hit and miss situation. It seems that some get by while others get rejected. Also, it seems the same is true for who gets taken down. Best to have all the bases covered if it's an important app.

Someone posted a step-by-step for getting an app approved using crypto, but I don't have the link handy.
 
  • Like
Reactions: davidbaker
What I read in that blog mentioned by OP is some opinion. Here's my opinion: You don't need an ERN for using https. You're wasting your time trying to get the ERN. Just submit the app when it's ready.

I doubt most people reading this know what encryption is and I doubt any people reading this have ever written any encryption. rot-13 doesn't count.
 
Most apps don't require the ERN. When you submit the app there are a bunch of exceptions to the ERN requirement. Just using HTTS or SHA... is not reason to require an ERN.

Only if you use strong encryption. And if you do, you'll know you are.
 
firewood said:
Depend on whether you have the word "need" defined by your lawyer, or by what 99% of iOS developers actually do to get their simple API-using iOS app successfully approved for App store distribution.
Click to expand...
I suppose I care about "need" as defined by Apple and/or the US government. ;)

dantastic said:
Most apps don't require the ERN. When you submit the app there are a bunch of exceptions to the ERN requirement. Just using HTTS or SHA... is not reason to require an ERN.

Only if you use strong encryption. And if you do, you'll know you are.
Click to expand...

I just had a talk with a representative from Apple. It took me a while to get someone on the phone but I finally managed and they said that using HTTPS is enough to require an ERN :( I don't know about SHA, I didn't ask, I don't know what that is. My developer says that we are using https, so, I better get an ERN.
 
Last edited by a moderator:
That's not correct, the person you spoke to could not have been familiar with the concepts.
Everyone is using HTTPS. In iOS9 you must use HTTPS (there are ways around it but that's a separate note).
An app should be rejected if it doesn't use HTTPS as a bare minimum.

Read the exception criteria in the encryption section of the submission flow. Using HTTPS for communication with your backend is exempted.
 
davidbaker said:
I suppose I care about "need" as defined by Apple and/or the US government. ;)
Click to expand...

Unhelpful. Apple does not apply any particular definition consistently during actual app approvals or rejections. And the government lets courts decide, and there is no applicable court decision to be found that applies to you unless your lawyer says there is or is not.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back