Although x509 certificates have been here for a while, they have become more popular for client authentication in zero-trust networks in recent years. Mutual TLS, or authentication based on X509 certificates in general, brings advantages compared to passwords or tokens, but you get increased complexity in return.
In this talk, we'll deep dive into some novel attacks on mTLS authentication....
By: Michael Stepankin
Full Abstract and Presentation Materials: www.blackhat.com/us-23/briefi...