Using SSL Socket for identifying clients
Can SSL sockets be used to identify clients? What i am thinking of is, can i configure an SSL socket to only accept connections 开发者_JS百科from clients that have a certificate that i create beforehand?
Typically SSL is used only when the server is authenticated (the client knows the server's identity), but the client remains unauthenticated or anonymous. But SSL can be easily used for authentication of clients. The only requirement is that client also holds a certificate. By verifying a client's certificate against Certification Authority you can authenticate your client.
NB it can't be a certificate that you create. By the nature of PKI the client has to create his own private key and certificate.
精彩评论