In a traditional TLS handshake, the client authenticates the server, and the server doesn’t know too much about the client. However, starting now, Cloudflare is offering enterprise customers TLS with client authentication, meaning that the server additionally authenticates that the client connecting to it is authorized to connect.
TLS Client Authentication is useful in cases where a server is keeping track of hundreds of thousands or millions of clients, as in IoT, or in a mobile app with millions of installs exchanging secure information. For example, an IoT company can issue a unique client certificate per device, and then limit connections to their IoT infrastructure to only their devices by blocking connections where the client doesn’t present a certificate signed by the company’s certificate authority.
Or in the case of a mobile banking app, where the bank wants to ensure customers’ secure financial data doesn’t get stolen by bots spoofing their mobile app, they can issue a unique certificate to every app install and in the TLS handshake validate requests are coming from their mobile app. Client authentication is also useful for VPNs, enterprise networks or staging sites, where corporations and developers need to lock down connections to only laptops Continue reading
The post Worth Reading: How to choose a sandbox appeared first on rule 11 reader.
Thanks to all who joined us for the Nokia 5G Report Webinar, Converging Transport Networks for 5G Success – The ‘Anyhaul’ Imperative. Read the full Q&A here.
Last week in Geneva I presented the Internet Society's Internet Futures project during UNCTAD E-Commerce week. Each time I present this project, I gain new perspectives from people who care deeply about the Internet's future. One government participant wondered what the digital divide will look like in 5-10 years. Will the divide only be about access to technology or will new divides emerge? The implications of censorship, cybersecurity, national economic readiness, and education all loom large in the minds of our community when we think about digital opportunity in the future.
We at the Internet Society are always thinking about what’s next for the Internet and how our community can make a positive impact.