• OAuth 2.0 from Protecting APIs to Supporting Authorization & Authentication - Aaron Parecki - ASW #289

  • Jun 25 2024
  • Duración: 1 h y 1 m
  • Podcast

OAuth 2.0 from Protecting APIs to Supporting Authorization & Authentication - Aaron Parecki - ASW #289

Escúchala gratis

Ver detalles del espectáculo

  • Resumen

  • OAuth 2.0 is more than just a single spec and it's used to protect more than just APIs. We talk about challenges in maintaining a spec over a decade of changing technologies and new threat models. Not only can OAuth be challenging to secure by default, but it's not even always inter-operable.

    Segment Resources:

    • https://oauth.net/2.1
    • https://oauth.net/specs/
    • https://oauth2simplified.com/
    • https://oauth.net/2/dpop/
    • https://oauth.net/2/oauth-best-practice/
    • https://oauth.net/fapi/
    • https://developer.mozilla.org/en-US/docs/Web/API/FedCM_API

    Thoughts on shared responsibility models after the Snowflake credential attacks, looking at AI's current and future role in offensive security, secure by design lessons from Apple's Private Cloud Computer, and more!

    Visit https://www.securityweekly.com/asw for all the latest episodes!

    Show Notes: https://securityweekly.com/asw-289
    Más Menos
Política y Gobierno
Más Menos

Lo que los oyentes dicen sobre OAuth 2.0 from Protecting APIs to Supporting Authorization & Authentication - Aaron Parecki - ASW #289

Calificaciones medias de los clientes

Reseñas - Selecciona las pestañas a continuación para cambiar el origen de las reseñas.

Reseñas de Audible.com

Opiniones de Amazon
No hay comentarios disponibles