Post 9w2G8KgvAeH3K9bfHM by rumpelsepp@mastodon.social
 (DIR) More posts by rumpelsepp@mastodon.social
 (DIR) Post #9w1GlPFWRflLG8kLK4 by sir@cmpwn.com
       2020-06-12T21:36:11Z
       
       0 likes, 2 repeats
       
       Can we talk about client-side certificates? #bloghttps://drewdevault.com/tls/security/oauth/2020/06/12/Can-we-talk-about-client-side-certs.html
       
 (DIR) Post #9w1H13cmc6j4pB5cFU by wasamasa@lonely.town
       2020-06-12T21:38:44Z
       
       0 likes, 0 repeats
       
       @sir I suspect the confusing UI in browsers didn't help their adoption. You aren't shown why you're expected to select a cert or which one to pick, kind of like with Basic Auth...
       
 (DIR) Post #9w2G8KgvAeH3K9bfHM by rumpelsepp@mastodon.social
       2020-06-13T09:03:34Z
       
       0 likes, 0 repeats
       
       @sir My company uses client certificates. Every employee has a Smartcard with his certificate. In order to manage holidays, download contract documents, ... you need to go to a website, do client side tls stuff using your smartcard and voila. It is cool despite the smartcard requires proprietary software :/