As per customer's security policy standards we need to be able to use mutual TLS X.509 client certificates as client credentials to authenticate against ICP.
This is a major security concern raised by the architecture review board from the customer as current authentication relies on a basic technical username and password.
Real Scenario + Problem Statement
|Who would benefit from this IDEA?||As an ICP API consumer I want to use mutual TLS X.509 client certificates so that when access to ICP is higly secured and meet my security standards.|
Why is it useful?
|Market Evidence - # of customers in next 12 months|
|Avg Annual Contract Value Per Customer|
|Secondary Persona (multi-select)|
How should it work?
|Geo Availability for this IDEA|
|Geo - Use for OBDR Reporting only|