Gemalto is now part of the Thales Group, find out more.

You are here

PLS8-E: Client certificates for authentication against a server | Thales IoT Developer Community

March 15, 2018 - 1:47pm, 2094 views

Hello,

we are using the PLS8-E in a product which is currently in developement. After stuying application note 62 (Transport Layer Security for Client TCP/IP Services), it is clear how to establish a TLS connection with server side certificates. However, we would also like to use client certificates, in order to authenticate our device (client) against the server. Although client certificates are mentioned in the application note, they seem to be used to protect the access to the (server) certificate store in the modles NVRAM.

So my question is: Is there any way to use two establish a TLS connection using mutual authentication (certificates on both sides, as mentioned here: https://en.wikipedia.org/wiki/Mutual_authentication) with the firmware of the PLS8-E? If not, are there alternatives? We want to avoid username/password based authentication.

Best regards,

Alex