A serious vulnerability in both the OAuth and OpenID protocols could lead to complications for those who use the services to login to websites like Facebook, Google, LinkedIn, Yahoo, Microsoft ...

Today, Google and Plaxo released a hybrid protocol that combines OpenID, the open online identity standard, with OAuth, the secure data portability standard. Too often, when a Website wants to ...

OpenID and OAuth think that they have a collective right answer, but Facebook clearly thinks that it has its own. As Louis Gray told me in a discussion about the subject, it will likely come down ...

The vulnerability targets OpenID and OAuth, two open-source login tools that allows users to sign up or sign in at other websites using their existing information on other websites, such as ...

OAuth 2.0 and OpenID Connect: The Professional Guide Authentication and authorization are critical parts of any application. They evolved over the years to meet the challenging requirements of the ...

Another day, another major internet security flaw (step aside, Heartbleed). A bug has been found in OpenID and OAuth 2.0, two authentication programs that let you log into web sites using your ...

Authentication systems employed by large websites such as Twitter and Digg could be at risk after researchers have discovered a basic flaw that could crack a large number of open-source software ...

A vulnerability discovered in OAuth 2.0 and OpenID – dubbed “Covert Redirect,” a play on Open Redirect – could enable attackers to, at the very least, steal credentials from users of some ...

Perhaps more interesting from a particular perspective is Bloglines’ intention to provide support for oAuth (Open Authentication) and APML (Attention Profiling Mark-up Language).