WiFi - security iOS

Ok so I started to type out a really long explanation on this but then I realized without knowing the full setup of the authentication and certificates I could possibly give you an incorrect answer.

With that being said here's a simple answer. If you're concerned about your employer viewing your internet activity, then I would suggest to stay off of the WiFi.

They wouldn't be able to view things on your device per se but they would be able to see anything transmitted to/from your device across the network. Since they require a login to access the WiFi, they could easily run reporting software and know everything you accessed. The only way around this would be to use a VPN so it would be encrypted but I doubt they'd allow you to connect to an outside VPN.

Another possible scenario is they don't care what traffic is being sent across they just want to make the access point more secure and keep people off the WiFi who shouldn't have access. This would be best case scenario but unless you're a part of the network team you wouldn't likely know.

 

Not sure it is good idea to talk about your company's security measurement on macrumor, while you are still employed?
Even thought it is on the surface.

Shouldn't this a question between you and your IT?

 

All the certificate does is tell the other end that you are who you say you are. That's it. I'm not authorized, you are.

As for what leaks - from iOS, it's what you do online that can be revealed. If you happen to already have a copy of Belinda Does Boston XXX in your videos, no one else will know it. If you *download* a copy of Belinda Does Boston XXX while you're on the company network, the fact that your address connected to a questionable site may very well be noticed.

 

If it's a big company then you're correct, they likely won't care unless you're accessing content that could bring harm to the network or a potential legal issue.

Certificates installed on your iPhone in this circumstance are going to be to verify your identity with the server. By installing the certificate it's not going to magically give them access to your iPhone.

I'm not sure your experience with networks, but when you do anything on the internet you send and receive packets. These packets can be intercepted along the way and if they aren't encrypted it's easy to tell where you're going and what you're doing. So yes they would likely see a lot of packets from random apps. For instance if somebody has Clash of Clans, that has a constant connection and is annoying, especially if multiple people on the same network have it installed.

I used to work as a network admin and my general recommendation to people is if you have any concerns, whether it's what we can see, or you don't trust the certificates then don't access the network. Based on what you described of the certificates it sounds like they setup radius authentication and those certificates are a requirement of radius authentication. Honestly, your IT department probably has an internal wiki or would likely reply to any questions on it. But I don't think there should be any concern. Also, you can always remove any certificates or profiles installed on your iPhone if you don't feel comfortable with it.