Back

Speaker "Prabath Siriwardena" Details Back

 

Topic

OAuth 2.0 Threat Landscapes for Identity Architects and Developers

Abstract

OAuth 2.0 and all the profiles built around it have built the identity layer of the Internet. OAuth 2.0 is at the heart of OpenID Connect, Mobile Connect, UMA and many other popular standards. Understanding the threat landscapes in OAuth 2.0 is essential in building a secured identity infrastructure. This talk will guide you through multiple attacks took place over last couple of years exploiting security vulnerabilities in various OAuth 2.0 implementations, their root causes and how to mitigate any future security exploits by following best practices.

Profile

Prabath Siriwardena is the Senior Director of Security Architecture at WSO2 Inc - and also the founder of the Silicon Valley IAM meetup group. He is the author of the book Advanced API Security published by Apress and has also authored three more books on Apache Maven and Enterprise Integration. Prabath is also a member of Apache Axis PMC and has spoken at numerous international conferences including OSCON, QCon, ApacheCon, WSO2Con, European Identity Conference, Cloud Identity Summt (CIS), Internet Identity Worksop (IIW), IDentity Next, API World, API Strat and OSDC. He has more than 13 years of industry experience and has worked with many Fortune 100 companies.