OAuth 2.0 from Protecting APIs to Supporting Authorization & Authentication - Aaron Pa... - ASW
Vložit
- čas přidán 24. 06. 2024
- OAuth 2.0 is more than just a single spec and it's used to protect more than just APIs. We talk about challenges in maintaining a spec over a decade of changing technologies and new threat models. Not only can OAuth be challenging to secure by default, but it's not even always inter-operable.
Segment Resources:
- oauth.net/2.1
- oauth.net/specs/
- oauth2simplified.com/
- oauth.net/2/dpop/
- oauth.net/2/oauth-best-practice/
- oauth.net/fapi/
- developer.mozilla.org/en-US/d...
Visit www.securityweekly.com/asw for all the latest episodes!
Show Notes: securityweekly.com/asw-289 - Věda a technologie