Inter Service Authentication Schemes

Clas icats are intrinsically a transport based. If you can get the transport to issue new requests, and that's what you're relying on for authenication, then the client sorts aren't helping you any more. The biggest one is that do clients certificates to actually implement them? You're naturally going to use a pre existing t l s library. Nobody writes their ownrel es lia. They'll be insane to do that,. And pretty much every tl s library that exists was built for the pk certificate. There are weird corner cases where your libraries didn't expect to support these kinds of authinications. But i need to make sure this is more accurate than it seems