Do you want to meet our team? @kim.maida will be presenting:

Title: Authstronomy: The Science of Web Authentication
Speaker: @kim.maida
Description: Authentication and authorization can be daunting topics for many developers, including those of us working in the landscape of web apps. Jargon and acronyms (OAuth, OIDC, JWT, IETF)? How does cookie-based authentication work? How does token-based authentication work? New SPA authorization best practices?! What are the shortcomings and advantages we need to consider when adding authentication to browser-based applications? I’ll demystify the terminology and concepts of authentication and authorization and talk about how modern web application security can be implemented easily with authorization servers.

at All Things Open.

https://allthingsopen.org

Slides and resources will be shared here after the event.

Let us know if you have any questions!

Here is a sneak preview from this talk:

science-of-web-authentication720×405 5.75 MB

Slides: https://www.dropbox.com/s/nbvm1nw5k31qyau/kimmaida-science-of-web-authentication.m4v?dl=0 (in video format to preserve diagram animations)

Resources:

• IETF
• OAuth2
• OIDC
• JSON Web Tokens
• JWT.io
• OIDC Claims
• RBAC
• OAuth2 BCP for Browser-based Apps
• OAuth2 Implicit Grant and SPAs
• auth0-spa.js
• Learn Identity

This session was not recorded.