Exam4Training

Which statement is true about using mutual TLS to secure an application?

Which statement is true about using mutual TLS to secure an application?
A . Mutual TLS requires a hardware security module to be used
B . Mutual TLS authenticates the identity of the server before the identity of the client
C . Mutual TLS ensures only authorized end users are allowed to access an endpoint
D . Mutual TLS increases the encryption strength versus server-side TLS alone

Answer: B

Explanation:

Mutual TLS (mTLS) is an extension of TLS that requires both parties (client and server) to present their certificates to each other during the handshake process. This way, both parties can verify each other’s identity and establish a secure connection. The authentication of the server happens before the authentication of the client, as the server sends its certificate first and then requests the client’s certificate.

References: https://docs.mulesoft.com/mule-runtime/4.3/tls-configuration#mutual-authentication

Exit mobile version