Full episode and show notes

OAuth, WebAuthn, and the Impact of Design Choices – Dan Moore – ASW #260

We return to discussions of OAuth and all sorts of authentication. This time around we’re looking at the design of authentication protocols, the kinds of trade-offs they weigh for adoption and security, and how a standard evolves over time to keep pace with new attacks and put to rest old mistakes. Segment resources: https://fusionauth.io/docs/v1/tech/core-concepts/modes, https://webauthn.wtf/, https://datatracker.ietf.org/doc/html/rfc7636, https://www.ietf.org/about/participate/tao/.

Full Segment Notes

We return to discussions of OAuth and all sorts of authentication. This time around we're looking at the design of authentication protocols, the kinds of trade-offs they weigh for adoption and security, and how a standard evolves over time to keep pace with new attacks and put to rest old mistakes.

Segment resources:

Guest
Senior Director for CIAM Strategy and Identity Standards at FusionAuth

Dan Moore is a senior director for CIAM Strategy and Identity Standards at FusionAuth, where he helps customers and community members create solutions, contributes to identity standards, and educates developers about auth and OAuth. He’s written, contributed to or edited 5 books, including “Letters To a New Developer” and “97 Things Every Cloud Engineer Should Know”. A former CTO, technical trainer, engineering manager and longtime developer, Dan has been writing software for (checks watch) over 25 years.

Show More

Stay in the Know, No Smoke and Mirrors – Join Our Newsletter

Get expert insights and technical breakdowns straight to your inbox.
Join Now

Related Segments

Related Content

You can skip this ad in 5 seconds