EngineeringSecuritymTLS: When certificate authentication is done wrongIn this post, we'll deep dive into some interesting attacks on mTLS authentication. We'll have a look at implementation vulnerabilities and how developers can make their mTLS systems vulnerable to user impersonation, privilege escalation, and information leakages. Although X.509 certificates have been here for a while, they have
![mTLS: When certificate authentication is done wrong](https://cdn-ak-scissors.b.st-hatena.com/image/square/d92260900e9199cefeec2524228152f567cd402e/height=288;version=1;width=512/https%3A%2F%2Fgithub.blog%2Fwp-content%2Fuploads%2F2023%2F04%2F1200.630-Global%402x-1.png)