Enables or disables RSA blinding.
- macOS 10.2–10.9Deprecated
An SSL session context reference.
A Boolean value indicating whether to enable RSA blinding. Pass
trueto enable RSA blinding.
A result code. See Secure Transport Result Codes.
This function is used only on the server side of a connection.
This feature thwarts a known attack to which RSA keys are vulnerable: It is possible to guess the RSA key by timing how long it takes the server to calculate the response to certain queries. RSA blinding adds a random calculation to each query response, thus making the attack impossible. Enabling RSA blinding is a trade-off between performance and security.
RSA blinding is enabled by default. Use the
SSLGet function to determine the current setting.