We were able to confirm that this setup works on macOS, but does not work on iOS/iPadOS. Our goal is PKCS#11-style certificate signing using USB hardware tokens. On macOS, the token is recognized through TKTokenWatcher, and we are able to obtain a usable SecKey via CryptoTokenKit and perform signing successfully. However, on iOS, although the token is detected as a smart card, we are not able to access the private key for signing: TKTokenWatcher does not report the token SecKeyCreateWithData does not produce a usable signing SecKey The smart card appears in TKSmartCardToken slots, but when sending APDU commands, the token returns 6985 / CACC errors (security status not satisfied) If there is an officially supported iOS-level workflow for accessing and using a private key on a USB smart card for signing, we would appreciate documentation or guidance.