Managing OAuth Risks in Mobile Applications

Published October 29, 2013 | By Dan Blum

When, not if, endpoints get compromised OAuth tokens and other credentials become collateral damage. That means cyber-attackers may also compromise any resources available through OAuth 2.0, such as accounts at sites accessed through some social login systems or (potentially) HIPAA-protected… Continue reading →

Posted in Dan Blum | Tagged auhorization, IIW, OAuth, social login

Proposed OAuth 2.0 Assurance Session at IIW

Published October 14, 2013 | By Dan Blum

As the morning dawns on the Mountain View Computer History Museum in California, the Internet Identity Workshop (IIW) will begin and I’ll propose an “unconference” session on OAuth assurance. As some of you know and others may see from the… Continue reading →

Posted in Dan Blum | Tagged authorization, federated identity, IIW, OAuth, social login

IIW

Managing OAuth Risks in Mobile Applications

Proposed OAuth 2.0 Assurance Session at IIW

Subscribe to Blog Notifications... HERE