In this talk you'll learn about the latest developments with the #OAuth and #OIDC specs directly from the standards group. The latest additions to the specs enable richer experiences and better security for applications using OAuth. TIMESTAMPS 0:00 Intro 0:11 The standards groups 3:31 IETF spec lifecycle 4:59 Mutual TLS 6:43 Resource Indicators 8:20 OAuth 2.0 Security Best Current Practice 17:47 OAuth for Browser-Based Apps 19:52 JWT Profile for Access Tokens 20:39 Rich Authorization Requests (RAR) 22:22 Pushed Authorization Requests (PAR) 23:49 JWT Authorization Requests (JAR) 25:34 OAuth 2.1 29:12 OAuth 3 / TXAuth Read more at: • • • • •