help-gnutls
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Help-gnutls] Re: Authentication during Handshake

From: Simon Josefsson
Subject: [Help-gnutls] Re: Authentication during Handshake
Date: Mon, 19 May 2008 22:21:33 +0200
User-agent: Gnus/5.110009 (No Gnus v0.9) Emacs/22.2 (gnu/linux) 
"Rainer Gerhards" <address@hidden> writes:

> Hi,
>
> I am implementing an upcoming IETF standard ( syslog over TLS,
> http://www.ietf.org/internet-drafts/draft-ietf-syslog-transport-tls-12.txt
> ). As part of that standard, clients and server need to do mutual
> authentication, which can either happen via subject names OR via
> fingerprints of the certificates.
>
> I would like to do the mutual authentication as part of the handshake,
> so that the handshake does not complete successfully if the server can
> not successfully authenticate the client or the client not
> successfully authenticate the server. Is this possible with GnuTLS? If
> so, could you give me a clue on what I need to provide to get it
> working.
>
> Any feedback is deeply appreciated.

If I understand correctly, you want to implement TLS client
authentication, i.e. when the client also uses a key+certificate.  Are
you working on the client or server side, or both?  In any case, check
the gnutls examples, there should be examples for this.

/Simon
reply via email to
[Prev in Thread] Current Thread [Next in Thread]