Oauth | Security and the Net

Entries Tagged ‘oauth’

OAuth session fixation attack

Apr.28, 2009 in News, Security

Last week, Twitter temporarily stopped using OAuth authentication. The information they posted on their blog was pretty light on details, and the same thing goes for the security advisory that was posted later. Since then, more details and some better explanations of attack scenario’s have surfaced; let’s have a closer look at the security issue [...]

Twitter gets ready for OAuth authentication

Feb.17, 2009 in News, Security

According to this FAQ, Twitter is getting ready to support OAuth sometime next month. This is great news; up until now, every service using Twitter’s API needed your login name and password. That meant problems when changing passwords, and extra ways for your password to be exposed to hackers. With the new OAuth authentication, external [...]

Welcome!

Use the links below to navigate this site.
If you have any suggestions for improving this site, feel free to let me know at mar...@securityandthe.net, or leave a comment on the site.

Recent posts
Categories
- Apple (24)
- General (51)
- Howto's (3)
- Humor (4)
- News (103)
- Security (99)
- Short newslinks (67)
- Spammers (8)
Archives
- October 2009 (1)
- September 2009 (4)
- August 2009 (4)
- July 2009 (4)
- June 2009 (12)
- May 2009 (8)
- April 2009 (14)
- March 2009 (7)
- February 2009 (17)
- January 2009 (9)
- December 2008 (18)
- November 2008 (24)
Blogroll

Security and the Net

News and opinions about security, the internet and more

Entries Tagged ‘oauth’

OAuth session fixation attack

Twitter gets ready for OAuth authentication

Welcome!

Recent posts

Categories

Archives

Blogroll

Meta

Sponsors

Tag Cloud