[Log In] []

Exploring the science and magic of Identity and Access Management
Friday, March 29, 2024

Phil Hunt on Tokens

Identity
Author: Mark Dixon
Saturday, March 2, 2013
8:52 am

Philhunt

This week, Phil Hunt posted a good educational piece about tokens, entitled, “Standards Corner: Tokens. Can You Bear It?“.  He focuses on how tokens are used in message authentication and explains the differences between bearer tokens and proof tokens, including implications of each.  He describes how the IETF OAuth Working Group is now working on requirements for Holder-of-Key tokens (aka proof tokens) to address how web sites which accept tokens should consider risks of compromise.

Thanks, Phil, for a instructive post.

Comments Off on Phil Hunt on Tokens . Permalink . Trackback URL
WordPress Tags: ,
 
Copyright © 2005-2016, Mark G. Dixon. All Rights Reserved.
Powered by WordPress.