In a recent article published on Nordic APIs, Daniel Lindau compare three different ways to achieve secure authentication and authorization for API access: API Keys, HTTP Basic Authentication, and OAuth. He also highlights the benefits and drawbacks for each method.
On June 11th, Curity and Signicat will explore how you can achieve secure and easy eID authentication to cloud platforms in a live 60-minute webinar. We hope you can join.
We are pleased to announce that version 5.1 of the Curity Identity Server is out. This minor release is more-or-less two releases in one! It includes a lot of big new features and fixes.
Earlier this month we moved to new offices in Stockholm with plenty of room for our growing team. We also welcomed new members to the team.
On May 6th Curity identity expert Jacob Ideskog will join Nordic APIs LiveCast Maturing Platform Security. Those who join will learn how to evolve API security architecture with identity.
Learn the basics of the leading security standards from the comfort of your chair. We have launched a new online course offering a comprehensive introduction to OAuth and OpenID Connect, with the aim to help you get started using these security standards in your own projects.
In a recent customer story, Michael Lind Mortensen, Lead Domain Architect at Bankdata talks about how Bankdata has improved and modernized their identity infrastructure with the Curity Identity Server.
In order to provide a safe login experience, more adaptive login methods are often needed. Join Curity's Travis Spencer in a webinar on April 22nd, when he'll show how geo-location data can be integrated into simple OAuth and OpenID Connect clients and set up adaptive authentication.
We’re pleased to announce that Curity have released an open source WebAuthn Authenticator plug-in for the Curity Identity Server.
We are pleased to announce that version 5.0 of the Curity Identity Server is out. This is the fifth major release in the lifecycle of the Curity Identity Server and we're very excited about it. Read on for what's new in this release.
The Curity team started the year by welcoming three new colleagues. We are pleased to welcome Judith Kahrer, Sathya Duraisamy and Kim Freskgård who have all joined the Curity Stockholm office.
Travis Spencer was recently interviewed by David Berlind of ProgrammableWeb. The conversation was recorded and you can now read, watch or listen to the interview.
Curity will be hosting OAuth and OpenID Connect workshops at Nordic APIs 2020 Austin API Summit on May 4th. We wil host both an introductory workshop for those new or less experienced in working with the standards, and an advanced session for those who have already implemented the standards.
KuppingerCole recently published their Leadership Compass for API Security and Management. In this report, Curity is determined to be a leading vendor in the Product and Innovation categories.
We recently published several new customer stories which showcase how the Curity Identity Server can empower businesses to achieve their goals, make vital organizational changes and comply with regulation.
We’re giving a special donation to the Swedish Cancer Society this holiday season. It's a charity very close to our hearts. They do incredibly important work and fund vital cancer research projects.
We are delighted to announce that version 4.5 of the Curity Identity Server is out. This includes a number of fixes and some features requested by customers racing to complete projects before the end of the year. Read on for what's new in the latest release.
Financial-grade security is important not only for the financial sector. Join Curity's Travis Spencer in a webinar on December 11th, when he'll explore financial-grade security for APIs, why it's important and how OAuth and OpenID Connect can be used in this context.
We are pleased to announce that version 4.4 of the Curity Identity Server is out. This release includes many fixes and features requested by customers. One of the biggest is support for a new database called CockroachDB.
Curity have submitted a draft RFC, The OAuth 2.0 Authorization Framework: Claims. In the RFC, we propose an extension of OAuth 2.0 to include the claims concept from OpenID Connect, which we believe would strengthen the OAuth framework.
Nordic APIs 5th Platform Summit took place in Stockholm 21-23 October 2019. We had speakers from all over the world, representing a wide range of industries involved in APIs, shareing innovative insights on building success in the API ecosystem. As organizers we are pleased with the event and hope everyone who attended enjoyed it too!
We are delighted to announce that version 4.3 of the Curity Identity Server is out. Read on for what is new in the lastest release.
As Curity continues to focus on growth, the team is expanding to support and execute on the company’s ambitious plans. We are pleased to welcome Nikoleta Kalavrouzioti och Emma Sköld to the team.
We’ll be at API World in San Jose on October 8-10 discussing API Security. And now is your chance to join us as we have some Free Open Passes to share. Read on for information on how to register.
We’re pleased to announce that Curity Identity Server is now available on Docker hub. With pre-built Docker images for every new release, it will be even easier for those using Docker to get started and to manage the Curity Identity Server.
We’re excited to support NGINX Conf 2019. Curity will join the conference in Seattle on September 10 & 11 as a sponsor, and you will also hear talk from Curity's Travis Spencer.
On Monday 21st October, Curity will be hosting two OAuth and OpenID Connect workshops at Nordic APIs 2019 Platform Summit in Stockholm. We will run one introductory and one advanced workshop focusing on the OAuth and OpenID Connect protocols.
We are happy to announce that version 4.2 of the Curity Identity Server has been released. It contains several enhancements, fixes and new features that we believe you will find useful. Read on for a summary and highlight of what's new.
Curity are pleased to once again join the GOTO Copenhagen conference. On Tuesday 19th November, Curity identity specialist Jacob Ideskog will host a talk on using OAuth tokens as your identity API.
In a recent customer story, Matt Jenks, CTO at Griffin Group Global talks about how Curity has helped them establish a microservices oriented architecture. Allowing them to handle the multitude of client infrastructures they encounter, assure customer privacy and anonymity using standards-based techniques.
We are delighted to announce that version 4.1 of the Curity Identity Server is out. The latest version introduces the full-fledged concept of claims in the product. Read on for more.
We're excited to announce the 2nd webinar in our series. The upcoming webinar "Scalable Access Control for APIs" is taking place on Wednesday 28th August at 3:00 PM CEST.
This week Curity’s Daniel Lindau participated in a Nordic APIs LiveCast exploring API security strategies for large enterprises. He talked about how you can use a standards-based approach, using OAuth and OpenID Connect to scale permissions across groups and large organizations.
Nordic APIs 2nd annual Austin API Summit took place in Austin, Texas 13-15 May. The event doubled in size from last year, and as organizers of the event we're obviously thrilled. An international speaker panel from a wide range of industries involved in APIs, discussed the many faculties of developing and sustaining a thriving API-first organization.
We are pleased to tell you that we are speeding up growth by completing an investment led by Fairpoint Capital, an offshoot of SEB, one of Sweden's largest banks.
Curity will join the TechWorld Summit in Stockholm on June 4th. You will be able to meet us in person at our booth as well as hear Curity's Travis Spencer talk about identity management and API Security related questions .
We're launching a series of free webinars. The first session 'An introduction to OAuth and OpenID Connect' is taking place on Wednesday June 12th at 3:00 PM CEST (9:00 AM EDT).
We've recently published a new resource section on the Curity.io website. The resource center features articles on a range of topics including OAuth scopes, claims, tokens, Single Sign On and more.
Curity will participate in Nordic APIs' LiveCast ‘Scaling API Security For Enterprises’ on Wednesday June 19th. During the hour-long webinar, the speakers will discuss ways to scale API Security for large organizations.
We’re excited to tell you about OAuth.tools - An OAuth laboratory where you can easily connect to any OAuth server and try the full set of flows. The clean UI lets you see the flows clearly, in what order things happen, what tokens are returned and if signatures are valid and so on.
We're pleased to announce the release of Curity Identity Server 4.0. This release is very rich in features and includes more improvements than any of our previous releases.
The biggest, and most exciting new feature is delegated administration. It is now event easier to restrict access to any configuration element in the entire data model. Read on for more.
The Curity team continues to grow, and we are pleased to announce that Peter Hagren and Dimitrios Zografos have just joined our Stockholm office. Read on to learn more about Peter and Dimitris.
Curity will join the IDM Europe conference Frankfurt on March 14th, which we are proud to be a part of. During the conference you will be able to meet us in person at our booth to discuss identity management and API Security related questions.
We are happy to announce that version 3.4.1 of the Curity Identity Server has been released. The latest version contains performance updates and bug fixes that we believe you will find useful. The main update being the pooling of HTTP Clients, which will increase throughput when connecting to downstream services.
We're pleased to announce that Curity will be hosting two workshops at Nordic APIs 2019 Austin API Summit on May 13th.
Curity will host both an introductory workshop about OAuth and OpenID Connect in Practice, for those who want to learn about the advanced aspects of OAuth and OpenID Connect.
This year we’re giving a special donation to the Swedish Cancer Society. It is a charity that is very close to our hearts. They do incredibly important work and fund vital cancer research projects.
It’s not too late to give the gift of giving this Christmas. Go to www.cancerfonden.se – or a charity of your choice
On May 14-15, 2019, Nordic APIs are hosting the Austin API Summit in Texas. As supporters of Nordic APIs we’re pleased to announce that we will be at the event. Attendees of the Summit will hear from a long list of API experts as well as Curity’s Travis Spencer, Jacob Ideskog and Daniel Lindau.
More info and tickets are available on the website.
We are happy to announce that version 3.3.0 of the Curity Identity Server has been released. It’s a minor release; but contains several enhancements, fixes and new features that we believe you will find useful.
In a recent customer story, Anu Shahi from First Utility talks about how Curity has helped the organization to implement a versatile and modern identity and security mechanism, which supports multi-factor authentication, linking of various types of user accounts, Single Sign On (SSO) as well as user self-service actions.
Version 3.3 of the Curity Identity Server is due out later this month and includes new features to make it easy to comply with PSD2 regulations.
OAuth is a powerful solution for many providers. As with any tool, however, it’s only as powerful as it is understood by the user who chooses it. Understanding what OAuth is and, at the very least, having a general overview of each particular flow is extremely important. In a recent blog post, Daniel Lindau, looked at OAuth, and gave a brief rundown of each flow type.
The 2018 edition of the Platform Summit took place in Stockholm 22-24 October. This was the biggest event to date with about 480 total attendees, as organizers of the event we’re obviously thrilled. An international speaker panel from a wide range of industries involved in APIs, discussed the best practices that will propel the global API industry into the future.
On November 19-23 Curity will attend GOTO Copenhagen, which we are proud sponsors of. During the conference you will be able to meet us in person at our booth and discuss API Security related questions.
On Tuesday November 20th (at 11:30) our CEO, Travis Spencer will give a talk on Securing APIs and Microservices with OAuth and OpenID Connect. In addition to this, Jacob Ideskog, Identity Specialist at Curity, is hosting a workshop on OAuth and OpenID Connect in Practice.
Come and meet us at the API Security for Open Banking Summit, taking place 21st November in London. Travis Spencer, our CEO, will give a session on OAuth and OpenID Connect for PSD2, Open Banking and Third-Party Access.
You will also be able to meet us in person at our booth and discuss API Security related issues
We are happy to announce the release of Curity 3.1.0 and 3.2.0. Though not a major update, this release includes a lot of fixes and features. In addition to the thousands of tests that run on each commit, we spent a lot of additional time during this release cycle on testing. We added a lot more tests and ways of testing to help us detect issues more quickly. We also made a lot of improvements to the core system, resulting in a more secure and performant base. We noticed that some flows ran over three times faster and were able to sustain 300% more concurrent users. If you're still on 2.X, you can expect a tremendous speed boost after upgrading!
A forthcoming version of the Curity Identity Server will include a supported Java Virtual Machine (JVM) from Azul Systems, alleviating customers' concerns about the changes to the Oracle JVM licensing model, support terms, and release cycle.
On September 24 – 26 Curity will attend the API Conference in Berlin, which we are proud sponsors of. During the conference you will be able to meet us in person at our booth and discuss API Security related questions.
Come and meet us next week at the API:World, the world’s largest API conference next week in San Jose, CA between September 10 and 12. Travis Spencer, CEO of Curity, will give a session on Advanced OAuth. Come and and discuss your API security challenges with us at booth #316.
On October 22nd, Curity will be hosting two workshops at Nordic APIs 2018 Platform Summit. Later on October 23rd – 24th we will have three speakers from Curity presenting on different API security topics.
On August 22nd, Curity will host a new Java Meetup together with Oracle, at their office on Söder Mälarstrand 29 in Stockholm.
This is our most featureful, documented, and performant release ever! 3.0 marks a tremendous step forward in terms of capabilities, standard-compliance, user experience, and functionality.
Curity and Verisec, the company behind the mobile e-ID service Freja eID, enters into a technical partnership.
On April 11th – 13th Curity will be exhibiting at the API Conference which will be held at Business Design Centre in London. The CEO of Curity, Travis Spencer, will also be giving a talk: Secure Your APIs and Microservices Using OAuth & OpenID Connect.
Come by our booth and sign up to enter the lottery and you might go home with a Nintendo Switch!
On March 22nd, Curity will host a half-day workshop on OAuth and OpenID Connect at Nordic APIs and Copenhagen Fintech’s event APIs for Banking and FinTech, in Copenhagen. If you are architecting your APIs, or doing back-end development, then this workshop is for you – previous experience with the technologies is not required to participate.
Curity is the proud organizer behind the Stockholm Java User Group meetup. The next meetup will be hosted together with Computer Futures. The meetup, with the theme Patterns and Performance, will take place at 6 pm on February 20th, at SUP 46’s offices on Regeringsgatan 65 in Stockholm. The meetup is free and we will have three speakers presenting.
We are happy to be attending API Days in Paris on January 30th, where our CEO Travis Spencer will be holding a session on Secure Your APIs with Phantom Tokens.
In his session, Travis will be talking about how it is not sufficient to simply follow the standards to secure your APIs. How do you properly handle PII and other sensitive data inside JWTs and what about of devs depending on the data where changes to the token format breaks the app? The presentation will show how this is resolved using Phantom Tokens in the Curity Identity Server, still being 100% OAuth 2 compliant and benefiting from JWTs in the API backend protected by normal Reverse Proxy.
We are very happy to announce that the Curity Identity Server is now OpenID Connect certified by the OpenID Foundation. Curity is a strong proponent of organizations following the OpenID Connect standard and the for many reasons and we’re proud to pass all test required for certification. The working being done in the OpenID Foundation is in the benefit of the entire Internet community. The conformance profiles are: Basic OP, Implicit OP, Hybrid OP and Config OP.