Fireside Chat About OAuth 2.0 • Aaron Parecki & Eric Johnson • GOTO 2021
About this talk
This presentation was recorded at GOTOpia February 2021. #GOTOcon #GOTOpia http://gotopia.eu Aaron Parecki - Senior Security Architect at Okta @aaronpk Eric Johnson - Senior Developer Advocate at AWS Serverless ABSTRACT Take a deep dive into some advanced OAuth 2.0 processes and pitfalls like redirect URLs and state property. Join Aaron Parecki, author of the book OAuth 2.0 Simplified (https://amzn.to/2A3IMOf), and Eric Johnson, senior developer advocate at AWS for a fireside chat where they discuss some of the main reasons to use the OAuth 2.0 framework, that has already become an industry standard, and what it takes to build a secure web server [...] TIMECODES 00:00 Intro 01:14 What is OAuth? 02:07 Difference between AuthZ & AuthN 04:55 Is JSON Web Token (JWT) OAuth? 06:16 The history of OAuth 17:37 A good level of security 21:30 Difference between timeout & verification of use 23:46 Changes in OAuth 2.1 27:12 What is PKCE? 28:50 Outro Read the full abstract here: https://gotopia.eu/february-2021/sessions/1670/fireside-chat-about-oauth-2-0 RECOMMENDED BOOKS Aaron Parecki • OAuth 2.0 Simplified • https://amzn.to/2A3IMOf Aaron Parecki • OAuth 2.0 Servers • https://amzn.to/3ecHEsz Aaron Parecki • The Little Book of OAuth 2.0 RFCs • https://amzn.to/3i7qnlC Erdal Ozkaya • Cybersecurity: The Beginner's Guide • https://amzn.to/2T6OIj3 Richer & Sanso • OAuth 2 in Action • https://amzn.to/3hXiAH6 Wilson & Hingnikar • Demystifying OAuth 2.0, OpenID Connect, and SAML 2.0 • https://amzn.to/2U8iLY2 https://twitter.com/GOTOcon https://www.linkedin.com/company/goto- https://www.facebook.com/GOTOConferences #OAuth2 #OAuth #Security #Privacy #SecureWebServer #AWS #Serverless #Okta #AWSserverless #AuthZ #AuthN #OpenIDconnect #OpenID #Cybersecurity #Encryption #JWT #JSONWebTokens #RFC #PKCE Looking for a unique learning experience? Attend the next GOTO conference near you! Get your ticket at https://gotopia.tech SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily. https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Stay Updated
Get notified about new features and conference additions.
