Solved

SSL Client authentication

Posted on 2014-03-24
1
429 Views
Last Modified: 2014-03-24
From a very high level, my question is:  Is is tru that the server decides whther to invoke SSL client authentication and require client authentication from the client and not the other way around.

I believe the answer should be "yes, the server starts the authentication process, but I need to be sure".  Need to get past a mental block on my part.

Thanks
0
Comment
Question by:Anthony Lucia
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 15

Accepted Solution

by:
Giovanni Heward earned 500 total points
ID: 39950752
SSL/TLS Handshake
Is is tru that the server decides whther to invoke SSL client authentication and require client authentication from the client and not the other way around.

I believe the answer should be "yes, the server starts the authentication process, but I need to be sure".  Need to get past a mental block on my part.

Yes, the server configuration determines whether client side SSL authentication is required.  Server side SSL authentication is mandatory, client side is optional. See RFC 5246.
0

Featured Post

Is your NGFW recommended by NSS Labs?

Ours is! NSS Labs Next Generation Firewall Test gives the WatchGuard Firebox M4600 a "Recommended" rating! Curious where your NGFW landed on the  Security Value Map? See the map and download the full report today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Auditing domain password hashes is a commonly overlooked but critical requirement to ensuring secure passwords practices are followed. Methods exist to extract hashes directly for a live domain however this article describes a process to extract u…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question