Using the Curity Identity Server and features such as JWT assertion grant type and asymmetrically signed JWTs and mutual TLS for client authentication has helped Volvofinans Bank deliver banking-grade security.
Judith is a Product Marketing Engineer, with a keen interest in security and identity. She started her working life as a developer and moved onto being a security engineer and consultant before joining the Curity team.
This article offers advice on what to consider when starting your identity and access management (IAM) journey.
Why and when the EdDSA algorithm should be implemented to save you time, money, and resources.
Algorithms are essential to avoid security incidents such as private keys being retrieved from signatures or valid signatures being created.
JWT Secured Authorization Response Mode (JARM) allows you to use signed and encrypted responses. But why introduce another encryption if there is TLS?
How do you protect people's integrity in a pandemic when you rely on private data being shared and accessible?
Many specifications and drafts within the OAuth and OpenID world aim to help translate Open Banking requirements to technical ones.
Follow @curityio on Twitter
Subscribe for more content!