The TLS client authentication protocol has been a part of the security standard for years, but is just now coming into its own in certifying secure IoT connections.
5th May 2017 by Michael Heller
Client-side TLS certificates may not be new, but experts said these certs could find new life to ensure secure connections in the boom of internet of things devices, while multifactor authentication is better for humans.
Experts told SearchSecurity that historically, TLS client authentication was thought of as a way to allow humans to avoid using something like a password for authentication when connecting to a website, but it ended up being a complex process.
Jason Pappalexis, distinguished research director for NSS Labs, Inc., said “TLS client authentication is a means to achieve mutual authentication at the initial SSL/TLS handshake level.”
Powered by WPeMatico