title

RFC 8705 - OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens

charset

utf-8

X-UA-Compatible

IE=edge

viewport

width=device-width, initial-scale=1

description

OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens (RFC 8705, )

og:title

RFC 8705: OAuth 2.0 Mutual-TLS Client Authentication and Certificate-Bound Access Tokens

og:url

https://datatracker.ietf.org/doc/html/rfc8705

og:site_name

IETF Datatracker

og:description

This document describes OAuth client authentication and certificate-bound access and refresh tokens using mutual Transport Layer Security (TLS) authentication with X.509 certificates. OAuth clients are provided a mechanism for authentication to the authorization server using mutual TLS, based on either self-signed certificates or public key infrastructure (PKI). OAuth authorization servers are provided a mechanism for binding access tokens to a client's mutual-TLS certificate, and OAuth protected resources are provided a method for ensuring that such an access token presented to it was issued to the client presenting the token.

og:type

article

twitter:card

summary_large_image

alternate

/feed/document-changes/rfc8705/

apple-touch-icon

https://static.ietf.org/dt/12.39.2/ietf/images/ietf-logo-nor-180.png

canonical

https://datatracker.ietf.org/doc/html/rfc8705

icon

https://static.ietf.org/dt/12.39.2/ietf/images/ietf-logo-nor-32.png

icon

https://static.ietf.org/dt/12.39.2/ietf/images/ietf-logo-nor-16.png