For security reason, there is a need to be sure the server is really appcelerator.com when accessing ACS. Currently, Ti.Network.HTTPClient is used to communicate to the server, and the server validation is in place as explained in this document: http://developer.appcelerator.com/blog/2012/11/the-titanium-sdk-and-certificate-validation.html
However, the requirement is to examine the certificate owner as well. There is a possible risk, where an intermediate proxy/router might provide a different SSL certificate, which will lead to unprotected data.
Need to ensure the endpoint serving the data was in fact the correct domain, corresponding to the name given in the SSL certificate.