Control X509ClientVerifier

URI: X509ClientVerifier

Package: Network

< prev | next >

Description: The host or process has a means to verify that an entity that initiated communication with it is the holder of a private key corresponding to a trusted public key association such as an X509 certificate.

Host	A device that can store, process, transmit or receive data.
Process	Represents a process (usually implemented by software running on a Host) that can read, update or create data, or exchange data with other processes.

CSG-ClientX509Authentication	Access to service *Service* is controlled, by authenticating authorised users during the TLS connection against a known public key registered via a trustworthy means such as X509.
CSG-NetworkEAP-TLS	Control access to subnet *LogicalSubnet* using authentication via X509 or otherwise trusted public-private key pairs. The gateway device *Gateway* providing the network has an (X509 certified) key, and a means to verify (X509 certified) keys registered by authorised supplicants. You should also specify that supplicant devices have (X509 certified) key pairs or they will be unable to connect.
CSG-NetworkEAP-TLS-Client	If subnet *LogicalSubnet* uses a EAP.TLS to control access, supplicant device *Host* can connect if it has an X509 certified (or similarly trusted) asymmetric key pair.