In this episode, I used the Facebook hack as the leeway to explain why using an access token to represent a user is a bad idea.
View More Facebook hack and OAuth User Authentication [2 min OAuth]
Author: Nat
Having been working on Digital Identity since 2000.
Co-author of various identity related specifications like OpenID Connect, JSON Web Token.
Chair of the OpenID Foundation (2011-)
Vice Chair of the OpenID Foundation (2010),
Founder of OpenID Foundation Japan (2008-),
Trustee of Kantara Initiative (2009-).
Blockchain X-Border talk with the tech community
I will be moderating a Panel titled “Blockchain: X-Border talk with the tech community” this Thursday. It is a part of the symposium called “Fin/Sum…
View More Blockchain X-Border talk with the tech community
Secret of Authorization Code [OAuth 2 min]
This week, I have explained often an untalked property of OAuth 2.0.
View More Secret of Authorization Code [OAuth 2 min]
Where are Sender Constrained Token used in RFC6749?
Hi, Nat Sakimura here. In the last week’s episode, I have explained what are sender constrained tokens But you may wonder where these are going…
View More Where are Sender Constrained Token used in RFC6749?
2 mintues OAuth: Bearer and Sender Constrained Tokens
In the episode #1, I have explained that OAuth uses metro ticket like “tokens” to access a protected resource. These are called bearer tokens as…
View More 2 mintues OAuth: Bearer and Sender Constrained Tokens
[2 minutes OAuth] #1 Basic Concepts
I have started a new Youtube video series to explain the concepts of OAuth 2.0 to non-technical people. The series name is “2 minutes OAuth”.…
View More [2 minutes OAuth] #1 Basic Concepts
CfC: Requirements for Self Sovereign Identity
Main complaints around Self-Sovereign Identity fiasco that I have is that it is at best “Self-sovereign Identifier”. You will see it if you read the W3C…
View More CfC: Requirements for Self Sovereign Identity
Merry Privmas!
Happy birthday to you Happy birthday to you Happy birthday dear GDPR Happy birthday to you Merry Privmas!
View More Merry Privmas!My Slides for May 15 presentation at #EIC18
It was a fun day as always at #EIC18. No time right now to properly blog about it, so here are some of the tweets related…
View More My Slides for May 15 presentation at #EIC18Facebook, mydata, and Self Sovereign Identity
The hype and hysteria around blockchain, blockchain identity and Facebook/Cambridge Analytica scandal have been quite interesting to watch. It did and is still showing a…
View More Facebook, mydata, and Self Sovereign Identity