客户端的https的双向认证的证书是由CA机构生成的,还是只有自己生成的证书才需要双向认证?
PHP中文网2017-04-17 17:59:30
Personal opinion: Two-way authentication and one-way authentication have different functional requirements. The former requires the server to authenticate the client to improve security; the latter requires complete trust in the client, after all, sometimes it is to protect user data. And it has nothing to do with whether it is issued by the CA organization.
The above may not be accurate and is only based on personal knowledge and discussion.
黄舟2017-04-17 17:59:30
That is to say, the server certificate and the client certificate are two certificates, and both need to be applied for, right?
