@techreport{halen-fed-tls-auth-15, number = {draft-halen-fed-tls-auth-15}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-halen-fed-tls-auth/15/}, author = {Jakob Schlyter and Stefan Halén}, title = {{Federated TLS Authentication}}, pagetotal = 30, year = 2024, month = sep, day = 30, abstract = {This document describes the Federated TLS Authentication (FedTLS) protocol, enabling secure machine-to-machine communication within a federation. Both clients and servers perform mutual TLS authentication, establishing trust based on a centrally managed trust anchor published by the federation. Additionally, FedTLS ensures unambiguous identification of entities, as only authorized members within the federation can publish metadata, further mitigating risks associated with unauthorized entities impersonating legitimate participants. This framework promotes seamless and secure interoperability across different trust domains adhering to common policies and standards within the federation.}, }