Hacker News new | past | comments | ask | show | jobs | submit login

I agree that for machine to machine communication client certificates work well. Especially if you implement your own CA so you don't worry about the public infrastructure.



If you're writing your own code for both sides, an approach that I've seen work just as well is to keep whitelists of certificate fingerprints.




Consider applying for YC's Summer 2025 batch! Applications are open till May 13

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: