Certificates are used to secure exchanges between the secure client and the secure backend. They are part of the TLS and mutual authentication requirements.

On the client side, 4 items are required:

• The CA root certificate

• The backend certificate (signed with CA root) - for certificate pinning

• The client certificate

• The client key

Those file should be provided to the secure client (through provisioning) with the following naming convention:

• sc_ca.pem: the CA root certificate

• sc_server.crt: the backend certificate

• sc_client.crt: the client certificate

• sc_client.key: the client key