title

draft-ietf-oauth-mtls-17 - OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens

charset

utf-8

X-UA-Compatible

IE=edge

viewport

width=device-width, initial-scale=1

article:section

IETF - Internet Engineering Task Force

og:title

OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens

og:url

https://datatracker.ietf.org/doc/draft-ietf-oauth-mtls/17/

og:site_name

IETF Datatracker

og:description

This document describes OAuth client authentication and certificate-bound access and refresh tokens using mutual Transport Layer Security (TLS) authentication with X.509 certificates. OAuth clients are provided a mechanism for authentication to the authorization server using mutual TLS, based on either self-signed certificates or public key infrastructure (PKI). OAuth authorization servers are provided a mechanism for binding access tokens to a client's mutual-TLS certificate, and OAuth protected resources are provided a method for ensuring that such an access token presented to it was issued to the client presenting the token.

og:type

article

twitter:card

summary_large_image

alternate

/feed/document-changes/draft-ietf-oauth-mtls/

apple-touch-icon

https://static.ietf.org/dt/12.43.1/ietf/images/ietf-logo-nor-180.png

canonical

https://datatracker.ietf.org/doc/draft-ietf-oauth-mtls/17/

icon

https://static.ietf.org/dt/12.43.1/ietf/images/ietf-logo-nor-32.png

icon

https://static.ietf.org/dt/12.43.1/ietf/images/ietf-logo-nor-16.png