.Nat Zone

I am now in Singapore to deliver a keynote at Consumer Identity World APAC 2018.  Let us connect if you are around. 

In this episode, I used the Facebook hack as the leeway to explain why using an access token to represent a user is a bad idea.

I will be moderating a Panel titled “Blockchain: X-Border talk with the tech community” this Thursday. It is a part of the symposium called “Fin/Sum 2018” hosted by

This week, I have explained often an untalked property of OAuth 2.0.

Hi, Nat Sakimura here. In the last week’s episode, I have explained what are sender constrained tokens But you may wonder where these are going to be used.

In the episode #1, I have explained that OAuth uses metro ticket like “tokens” to access a protected resource. These are called bearer tokens as anybody who bears

I have started a new Youtube video series to explain the concepts of OAuth 2.0 to non-technical people. The series name is “2 minutes OAuth”. As the name

Main complaints around Self-Sovereign Identity fiasco that I have is that it is at best “Self-sovereign Identifier”. You will see it if you read the W3C community group draft.

Happy birthday to you Happy birthday to you Happy birthday dear GDPR Happy birthday to you Merry Privmas!

It was a fun day as always at #EIC18. No time right now to properly blog about it, so here are some of the tweets related to my presentation