Security Options

Topics

Configuring TLS Handshake Options

• sec_protocol_options_t
• OS_sec_protocol_options
• sec_protocol_options_set_tls_server_name(_:_:)
• sec_protocol_options_add_pre_shared_key(_:_:_:)
• sec_protocol_options_add_tls_application_protocol(_:_:)
• sec_protocol_options_append_tls_ciphersuite(_:_:)
• sec_protocol_options_append_tls_ciphersuite_group(_:_:)
• sec_protocol_options_add_tls_ciphersuite(_:_:)
• sec_protocol_options_add_tls_ciphersuite_group(_:_:)
• sec_protocol_options_set_tls_diffie_hellman_parameters(_:_:)
• sec_protocol_options_are_equal(_:_:)

Configuring TLS Versions

• sec_protocol_options_set_min_tls_protocol_version(_:_:)
• sec_protocol_options_set_max_tls_protocol_version(_:_:)
• sec_protocol_options_get_default_min_tls_protocol_version()
• sec_protocol_options_get_default_max_tls_protocol_version()
• sec_protocol_options_get_default_min_dtls_protocol_version()
• sec_protocol_options_get_default_max_dtls_protocol_version()
• sec_protocol_options_set_tls_min_version(_:_:)
• sec_protocol_options_set_tls_max_version(_:_:)

Configuring TLS Behavior

• sec_protocol_options_set_tls_resumption_enabled(_:_:)
• sec_protocol_options_set_tls_tickets_enabled(_:_:)
• sec_protocol_options_set_tls_false_start_enabled(_:_:)
• sec_protocol_options_set_tls_sct_enabled(_:_:)
• sec_protocol_options_set_tls_ocsp_enabled(_:_:)
• sec_protocol_options_set_tls_renegotiation_enabled(_:_:)
• sec_protocol_options_set_peer_authentication_required(_:_:)
• sec_protocol_options_set_tls_is_fallback_attempt(_:_:)
• sec_protocol_options_set_tls_pre_shared_key_identity_hint(_:_:)

Handling TLS Events

• sec_protocol_options_set_verify_block(_:_:_:)
• sec_protocol_verify_t
• sec_protocol_verify_complete_t
• sec_protocol_options_set_challenge_block(_:_:_:)
• sec_protocol_challenge_t
• sec_protocol_challenge_complete_t
• sec_protocol_options_set_key_update_block(_:_:_:)
• sec_protocol_key_update_t
• sec_protocol_key_update_complete_t
• sec_protocol_options_set_pre_shared_key_selection_block(_:_:_:)
• sec_protocol_pre_shared_key_selection_t
• sec_protocol_pre_shared_key_selection_complete_t

Inspecting TLS State

• sec_protocol_metadata_t
• OS_sec_protocol_metadata
• sec_protocol_metadata_get_negotiated_protocol(_:)
• sec_protocol_metadata_get_server_name(_:)
• sec_protocol_metadata_get_negotiated_tls_protocol_version(_:)
• sec_protocol_metadata_get_negotiated_tls_ciphersuite(_:)
• sec_protocol_metadata_get_negotiated_protocol_version(_:)
• sec_protocol_metadata_get_negotiated_ciphersuite(_:)
• sec_protocol_metadata_get_early_data_accepted(_:)
• sec_protocol_metadata_copy_peer_public_key(_:)

Handling TLS Challenges

• sec_protocol_metadata_access_distinguished_names(_:_:)
• sec_protocol_metadata_access_ocsp_response(_:_:)
• sec_protocol_metadata_access_peer_certificate_chain(_:_:)
• sec_protocol_metadata_access_supported_signature_algorithms(_:_:)
• sec_protocol_metadata_access_pre_shared_keys(_:_:)
• sec_protocol_metadata_create_secret(_:_:_:_:)
• sec_protocol_metadata_create_secret_with_context(_:_:_:_:_:_:)
• sec_protocol_metadata_peers_are_equal(_:_:)
• sec_protocol_metadata_challenge_parameters_are_equal(_:_:)

Handling Certificates

• sec_certificate_t
• OS_sec_certificate
• sec_certificate_create(_:)
• sec_certificate_copy_ref(_:)

Handling Identities

• sec_protocol_options_set_local_identity(_:_:)
• sec_identity_t
• OS_sec_identity
• sec_identity_create(_:)
• sec_identity_create_with_certificates(_:_:)
• sec_identity_copy_ref(_:)
• sec_identity_access_certificates(_:_:)
• sec_identity_copy_certificates_ref(_:)

Handling Trust

• sec_trust_t
• OS_sec_trust
• sec_trust_create(_:)
• sec_trust_copy_ref(_:)

Managing Security Objects

• sec_release(_:)
• sec_retain(_:)
• sec_object_t
• OS_sec_object

See Also

Network Security and Privacy

• Privacy Management
• Creating an Identity for Local Network TLS