Topic: mutual TLS 1.2

Is there any example or document about mutual TLS communication?. I can't find .

Share

Re: mutual TLS 1.2

Hi,

"Mutual authentication" involves both sides of the SSL/TLS connection sending a certificate chain during the handshake and verifying the peer's chain.  CyaSSL does mutual authentication when:

1.  The client has loaded a client certificate, private key, and CA cert to verify the server chain, and has enabled peer verification with CyaSSL_CTX_set_verify() or SSL_CTX_set_verify().

2.  The server has loaded a server certificate, private key, and CA cert to verify the client chain.  Peer verification is turned on by default on the CyaSSL server side, unless specifically disabled by the application.

The CyaSSL example client and server do mutual authentication by default, and are a good examples to reference.  These are located in <cyassl_root>/examples/client/client.c and <cyassl_root>/examples/server/server.c.

Best Regards,
Chris