Hi
We are going to be using certificates deployed onto mobile devices to provide a method of authentication for the client (mobile) to the server. That is, the presence of the certificate on the mobile will be used as an authentication factor.
This authentication certificate will be generated on an internal server and digitally signed by our internal CA.
I understand the certificate is the created with the public key of the server and the username of the device owner. Then the cert is digitally signed and sent to the device.
Is the private key of either the server or the device involved here at all for authentication certificates (as opposed to encryption)?