[WEB SECURITY] Social login / federated identity

Martin O'Neal martin.oneal at corsaire.com
Fri Feb 22 18:52:06 EST 2013


> I wouldn't expect a bank to use OAuth 
> to secure their services but WS-Federation 
> definitely could.

This isn't a technology issue though, it is one of theology.

Handing off your authentication credentials to a third-party is a great
idea until the third-party is compromised. 

Martin...




More information about the websecurity mailing list