Explore novel attacks on mTLS authentication in this 22-minute Black Hat conference talk. Dive deep into the complexities of x509 certificates for client authentication in zero-trust networks. Learn about the advantages and increased complexity of mutual TLS compared to passwords or tokens. Gain insights from security researcher Michael Stepankin on potential vulnerabilities in certificate-based authentication systems.
MTLS - When Certificate Authentication is Done Wrong
Overview
Syllabus
mTLS: When Certificate Authentication is Done Wrong
Taught by
Black Hat
Related Courses
-
mTLS: When Certificate Authentication Goes Wrong - Security Implementation Vulnerabilities
-
The Cloudflare MTLS Vulnerability - A Deep Dive Analysis
-
TLS and MTLS - Introduction to Modern Security
-
OAuth 2.1 and Beyond
-
A SSLippery Slope - Unraveling the Hidden Dangers of Certificate Misuse
-
Recertifying Active Directory Certificate Services
