TLS with Client Certificates, also called “Mutual TLS” (mTLS) isn’t widely understood. People have enough trouble dealing with server certificates, but when you add in client certificates, they are completely lost. This is a shame because mTLS creates an extremely secure end-to-end connection. This video explains client certificates and looks at how they can be used. Links: Articles on stolen token breaches. Here’s an article about how mTLS prevented a stolen token attack: