X.509 certificate
All communications are secured by mutual authentication of correspondents using X.509 certificates. A consumer is entitled to one subscription per X.509 certificate and therefore one AMQP connection. The lifetime of a subscription and therefore of an AMQP connection is limited by the expiry date of the certificate. Upon service restart, active subscriptions are not lost. The certificates are issued to the consumer by the DSNA during the service contractualisation phase. Certificates have an expiry date and their renewal must therefore be managed in advance by both parties. Transport authentication: TLS with mutual authentication and SASL ANONYMOUS.