DeviceCheck points out that AttestService and DCDevice can be used to strengthen the defense against jailbroken phones and cracked apps.
Reduce fraudulent use of services by managing device state and APP integrity.
The DeviceCheck service consists of two interface frameworks, one for Apple server interfaces used from apps and servers.
Using the DCDevice class in the APP gives you a token that can be used on the server to set and query binary data for each device, while ensuring user privacy. For example, you can use this data to identify devices that are already using the promotional prices you offer, or to flag devices that you’ve identified as deceptive. The server-to-server apis also allow you to verify that tokens sent from apps are on Apple devices.
Someone modifies your APP and publishes unauthorized features outside the APP Store, such as cheating, blocking ads, or accessing paid content. The APP Attest service allows your APP to recognize its validity, allowing your server to gracefully provide access to sensitive resources. Use [DCApp] (https://developer.apple.com/documentation/devicecheck/dcappattestservice?language=objc) ` ` [AttestService] (HTTPS : / / developer.apple.com/documentation/devicecheck/dcappattestservice?language=objc) on the device to generate a special encryption key, Verify these keys with Apple Attest. Then use this key to determine the validity of your APP when you request sensitive information from the server.
No single strategy can eliminate all cheating. APPAttest, for example, cannot accurately determine a device on a non-resistant operating system. Instead, the DeviceCheck service provides information that you can integrate into a comprehensive risk assessment of a device.