OAuch: Exploring Security Compliance in the OAuth 2.0 Ecosystem
Pieter Philippaerts, Davy Preuveneers, Wouter Joosen
Abstract
The OAuth 2.0 protocol is a popular and widely adopted authorization protocol. It has been proven secure in a comprehensive formal security analysis, yet new vulnerabilities continue to appear in popular OAuth implementations.
Topics & Concepts
ImplementationComputer securityComputer scienceAuthorizationProtocol (science)Cryptographic protocolCompliance (psychology)Internet privacyCryptographySoftware engineeringMedicineSocial psychologyAlternative medicinePsychologyPathologyWeb Application Security VulnerabilitiesSecurity and Verification in ComputingCloud Data Security Solutions