How does server validate that self-signed certificate came from the client who self-signed the certificate in mutual TLS?

Published: 8/11/2019
How does server validate that self-signed certificate came from the client who self-signed the certificate in mutual TLS?
Source: SECURITY.STACKEXCHANGE.COM

I have a mTLS (client authentication) setup where client sends a self-signed certificate. This self-signed certificate is transferred to and trusted by the server. The server's certificate is signed by Let's encrypt and Let's encrypt CA is trusted by the client. [ client.key ] -- | (signed) [ client.crt ] <- (trusts clients.crt) |--------------| client.crt |------------| | Client | ---------

Read more
Related news
Comment
FACEBOOK