filmov
tv
6/21 | The Client is Not Always Right! | CIS 2017
Показать описание
Mike Schwartz, Founder & CEO at Gluu.
The OpenID Connect or OAuth frameworks can be used to achieve a range of security levels. Properly used, they mitigates many risks. However, OpenID Connect’s flexibility, combined with its shared ontogeny with OAuth 2.0, creates opportunities for error--developers may not use (or even know about ) certain features necessary to achieve the transaction integrity they desire. The good news is that client software and middleware services can do some of the heavy lifting. You can have the best of both worlds--maximizing security and developer joy. Whether you’re a developer or security architect, what should you look for in an application that acts as an OpenID Connect client?
The OpenID Connect or OAuth frameworks can be used to achieve a range of security levels. Properly used, they mitigates many risks. However, OpenID Connect’s flexibility, combined with its shared ontogeny with OAuth 2.0, creates opportunities for error--developers may not use (or even know about ) certain features necessary to achieve the transaction integrity they desire. The good news is that client software and middleware services can do some of the heavy lifting. You can have the best of both worlds--maximizing security and developer joy. Whether you’re a developer or security architect, what should you look for in an application that acts as an OpenID Connect client?
0:17:09
0:00:24
0:04:28
0:00:54
0:00:24
0:02:05
0:11:22
0:08:14
1:13:06
0:01:11
0:08:48
0:05:23
0:05:36
0:04:28
0:00:37
0:18:40
0:04:29
0:08:35
0:00:57
0:06:06
0:15:49
0:05:17
0:06:51
0:01:01