Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

SSL Client authentication

Posted on 2014-03-24
1
Medium Priority
?
467 Views
Last Modified: 2014-03-24
From a very high level, my question is:  Is is tru that the server decides whther to invoke SSL client authentication and require client authentication from the client and not the other way around.

I believe the answer should be "yes, the server starts the authentication process, but I need to be sure".  Need to get past a mental block on my part.

Thanks
0
Comment
Question by:Anthony Lucia
1 Comment
 
LVL 15

Accepted Solution

by:
Giovanni Heward earned 2000 total points
ID: 39950752
SSL/TLS Handshake
Is is tru that the server decides whther to invoke SSL client authentication and require client authentication from the client and not the other way around.

I believe the answer should be "yes, the server starts the authentication process, but I need to be sure".  Need to get past a mental block on my part.

Yes, the server configuration determines whether client side SSL authentication is required.  Server side SSL authentication is mandatory, client side is optional. See RFC 5246.
0

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

An overview of cyber security, cyber crime, and personal protection against hackers. Includes a brief summary of the Equifax breach and why everyone should be aware of it. Other subjects include: how cyber security has failed to advance with technol…
The Internet has made sending and receiving information online a breeze. But there is also the threat of unauthorized viewing, data tampering, and phoney messages. Surprisingly, a lot of business owners do not fully understand how to use security t…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question