Protect The Bat-Computer! Understanding OAuth2 (With The Help Of Some Super Friends)

Track: Security
Abstract
OAuth2 can be difficult to understand - this talk takes the mystery out of it. It begins by explaining OAuth2 using a couple of heroes with a problem (Batman has a Bat-Computer that Superman would like to use, but Batman doesn't know Superman. However, they both know Wonder Woman) and shows how the heroes interact to allow Superman access to the Bat-Computer. We then map the characters into their OAuth2 equivalents (the Bat-Computer is a shared resource, Batman is the resource owner, etc.) and see how the OAuth2 flow works.

Next, we look at implementing OAuth2 in some common frameworks, such as Spring. Tips are offered for debugging OAuth2 and implementing it on the front end. The speaker will offer some advice gleaned from implementing OAuth2 security at multiple companies.

Participants will leave with an understanding of the OAuth2 workflow, some practical examples, and advice on implementing it in common situations.
Kelly Morrison
Kelly Morrison is a native of Georgia with a BS in mathematics and a PhD in computer engineering. He has over 30 years of software experience in various industries, including the television, education, retail, and agriculture sectors. He also wrote a monthly column for "Digital Output" magazine under the pen name "Armand Tarantino". He is currently employed as a solutions architect at Daugherty Business Solutions.
logo
speakers   sessions   sponsors   conference info  
  code of conduct   privacy policy   organizers   past conferences  
We are open-source