Learn how to design secure OAuth scopes and consent flows for enterprise applications. A complete guide for CTOs on API ...

Twitter officially disabled Basic authentication this week, the final step in the company’s transition to mandatory OAuth authentication. Sadly, Twitter’s extremely poor implementation of the OAuth ...

The social web welcomed a new open standard into its midst Wednesday with the release of OAuth, a user authentication protocol created by a disparate group of web programmers. OAuth involves concepts ...

GitHub has revealed that dozens of organizations were compromised by a data thief that used stolen OAuth tokens to access their private repositories. The developer platform’s security team opened an ...

The standard grew too far away from its roots as a simple Web authentication technology, author Eran Hammer-Lahav says, and now is insecure and overly broad. Stephen Shankland worked at CNET from 1998 ...

Since the beginning of distributed personal computer networks, one of the toughest computer security nuts to crack has been to provide a seamless, single sign-on (SSO) access experience among multiple ...

GitHub says it notified all organizations believed to have had data stolen from their private repositories by attackers abusing compromised OAuth user tokens issued to Heroku and Travis-CI. "As of ...

The developers behind the OAuth protocol have developed a new variant called OAuth WRAP that is simpler and easier to implement. It’s a stop-gap solution that will enable broader OAuth adoption while ...

Andrew was enraptured by video games at a young age by series such as Pokémon and The Legend of Zelda. A self-proclaimed recovered Dota 2 addict, you can find him enjoying the best games that the PC ...