Towards a standard for bearer token URLs – Neil Madden

In XSS doesn't have to be Game Over, and earlier when discussing Can you ever (safely) include credentials in a URL?, I raised the possibility of standardising a new URL scheme that safely allows encoding a bearer token into a URL. This makes it more convenient to use lots of very fine-grained tokens rather than one…

Capability-Based Security and Macaroons, by Manning Publications, The Startup

API Tokens: A Tedious Survey · The Fly Blog

Episode 427: Sven Schleier and Jeroen Willemsen on Mobile Application Security : Software Engineering Radio

Banking Crisis Raises Concerns About Hidden Leverage in the System - BNN Bloomberg

PDF] Synthetic Initialization Vector (SIV) Authenticated Encryption Using the Advanced Encryption Standard (AES)

Security – Neil Madden

WebAuthn and Security Keys

OAuth 2 in Action eBook : Richer, Justin, Sanso, Antonio: Kindle Store

Winter 2022 Program Guide by City of Evanston - Issuu

OAuth 2 in Action eBook : Richer, Justin, Sanso, Antonio: Kindle Store

Security – Neil Madden

20 Best API Design Books of All Time - BookAuthority

Healthy Living Magazine 2024 by USA Top Docs - Issuu

PDF) Reinforcer Variation in a Token Economy

Episode 406: Torin Sandall on Distributed Policy Enforcement : Software Engineering Radio