News | Curity Identity Server

The Difference Between HTTP Auth, API Keys, and OAuth

June 24, 2020

In a recent article published on Nordic APIs, Daniel Lindau compare three different ways to achieve secure authentication and authorization for API access: API Keys, HTTP Basic Authentication, and OAuth. He also highlights the benefits and drawbacks for each method.

Curity and Signicat in joint webinar June 11th

June 1, 2020

On June 11th, Curity and Signicat will explore how you can achieve secure and easy eID authentication to cloud platforms in a live 60-minute webinar. We hope you can join.

New Release: Curity Identity Server 5.1

May 19, 2020

We are pleased to announce that version 5.1 of the Curity Identity Server is out. This minor release is more-or-less two releases in one! It includes a lot of big new features and fixes.

New office and new starters

April 22, 2020

Earlier this month we moved to new offices in Stockholm with plenty of room for our growing team. We also welcomed new members to the team.

Curity joining Nordic APIs LiveCast Maturing Platform Security

April 20, 2020

On May 6th Curity identity expert Jacob Ideskog will join Nordic APIs LiveCast Maturing Platform Security. Those who join will learn how to evolve API security architecture with identity.

Course: Getting Started with OAuth and OpenID Connect

April 1, 2020

Learn the basics of the leading security standards from the comfort of your chair. We have launched a new online course offering a comprehensive introduction to OAuth and OpenID Connect, with the aim to help you get started using these security standards in your own projects.

Bankdata achieves an improved, modernized identity infrastructure with the Curity Identity Server

March 25, 2020

In a recent customer story, Michael Lind Mortensen, Lead Domain Architect at Bankdata talks about how Bankdata has improved and modernized their identity infrastructure with the Curity Identity Server.

Webinar: Adaptive Authentication in OAuth Using Geo-location Data

March 10, 2020

In order to provide a safe login experience, more adaptive login methods are often needed. Join Curity's Travis Spencer in a webinar on April 22nd, when he'll show how geo-location data can be integrated into simple OAuth and OpenID Connect clients and set up adaptive authentication.

Just Released: WebAuthn Authenticator Plugin

March 4, 2020

We’re pleased to announce that Curity have released an open source WebAuthn Authenticator plug-in for the Curity Identity Server.

New Release: Curity Identity Server 5.0

February 17, 2020

We are pleased to announce that version 5.0 of the Curity Identity Server is out. This is the fifth major release in the lifecycle of the Curity Identity Server and we're very excited about it. Read on for what's new in this release.

Curity continues their growth journey

February 12, 2020

The Curity team started the year by welcoming three new colleagues. We are pleased to welcome Judith Kahrer, Sathya Duraisamy and Kim Freskgård who have all joined the Curity Stockholm office.

Curity's Travis Spencer on ProgrammableWeb's Developers Rock Podcast

January 28, 2020

Travis Spencer was recently interviewed by David Berlind of ProgrammableWeb. The conversation was recorded and you can now read, watch or listen to the interview.

Learn about OAuth and OpenID Connect with Curity at the Austin API Summit 2020

January 20, 2020

Curity will be hosting OAuth and OpenID Connect workshops at Nordic APIs 2020 Austin API Summit on May 4th. We wil host both an introductory workshop for those new or less experienced in working with the standards, and an advanced session for those who have already implemented the standards.

Curity rated a leader in product and innovation by KuppingerCole

January 10, 2020

KuppingerCole recently published their Leadership Compass for API Security and Management. In this report, Curity is determined to be a leading vendor in the Product and Innovation categories.

Successful customer experiences with the Curity Identity Server

January 9, 2020

We recently published several new customer stories which showcase how the Curity Identity Server can empower businesses to achieve their goals, make vital organizational changes and comply with regulation.

We support the Swedish Cancer Society

December 20, 2019

We’re giving a special donation to the Swedish Cancer Society this holiday season. It's a charity very close to our hearts. They do incredibly important work and fund vital cancer research projects.

Curity Identity Server 4.5 released

November 26, 2019

We are delighted to announce that version 4.5 of the Curity Identity Server is out. This includes a number of fixes and some features requested by customers racing to complete projects before the end of the year. Read on for what's new in the latest release.

Webinar: Financial Grade APIs Using OAuth & OpenID Connect

November 15, 2019

Financial-grade security is important not only for the financial sector. Join Curity's Travis Spencer in a webinar on December 11th, when he'll explore financial-grade security for APIs, why it's important and how OAuth and OpenID Connect can be used in this context.

Curity Identity Server 4.4 released

November 11, 2019

We are pleased to announce that version 4.4 of the Curity Identity Server is out. This release includes many fixes and features requested by customers. One of the biggest is support for a new database called CockroachDB.

Curity propose enhancements to OAuth 2.0

November 6, 2019

Curity have submitted a draft RFC, The OAuth 2.0 Authorization Framework: Claims. In the RFC, we propose an extension of OAuth 2.0 to include the claims concept from OpenID Connect, which we believe would strengthen the OAuth framework.

2019 Platform Summit Conference Wrap Up

November 5, 2019

Nordic APIs 5th Platform Summit took place in Stockholm 21-23 October 2019. We had speakers from all over the world, representing a wide range of industries involved in APIs, shareing innovative insights on building success in the API ecosystem. As organizers we are pleased with the event and hope everyone who attended enjoyed it too!

Curity Identity Server 4.3 released

September 27, 2019

We are delighted to announce that version 4.3 of the Curity Identity Server is out. Read on for what is new in the lastest release.

Curity continues to grow

September 11, 2019

As Curity continues to focus on growth, the team is expanding to support and execute on the company’s ambitious plans. We are pleased to welcome Nikoleta Kalavrouzioti och Emma Sköld to the team.

Join Curity at API World – Free Open Passes

September 4, 2019

We’ll be at API World in San Jose on October 8-10 discussing API Security. And now is your chance to join us as we have some Free Open Passes to share. Read on for information on how to register.

Curity Identity Server now on Docker Hub

September 3, 2019

We’re pleased to announce that Curity Identity Server is now available on Docker hub. With pre-built Docker images for every new release, it will be even easier for those using Docker to get started and to manage the Curity Identity Server.

Meet Curity at NGINX Conf 2019 in Seattle

September 2, 2019

We’re excited to support NGINX Conf 2019. Curity will join the conference in Seattle on September 10 & 11 as a sponsor, and you will also hear talk from Curity's Travis Spencer.

Learn about OAuth and OpenID Connect with Curity at the 2019 Platform Summit

August 9, 2019

On Monday 21st October, Curity will be hosting two OAuth and OpenID Connect workshops at Nordic APIs 2019 Platform Summit in Stockholm. We will run one introductory and one advanced workshop focusing on the OAuth and OpenID Connect protocols.

Curity Identity Server 4.2 released

August 6, 2019

We are happy to announce that version 4.2 of the Curity Identity Server has been released. It contains several enhancements, fixes and new features that we believe you will find useful. Read on for a summary and highlight of what's new.

Curity's Jacob Ideskog speaking at GOTO Copenhagen

July 9, 2019

Curity are pleased to once again join the GOTO Copenhagen conference. On Tuesday 19th November, Curity identity specialist Jacob Ideskog will host a talk on using OAuth tokens as your identity API.

Griffin Group Global solved their authentication and privacy challenges with Curity

July 1, 2019

In a recent customer story, Matt Jenks, CTO at Griffin Group Global talks about how Curity has helped them establish a microservices oriented architecture. Allowing them to handle the multitude of client infrastructures they encounter, assure customer privacy and anonymity using standards-based techniques.

Curity Identity Server 4.1 released

June 25, 2019

We are delighted to announce that version 4.1 of the Curity Identity Server is out. The latest version introduces the full-fledged concept of claims in the product. Read on for more.

Webinar: Scalable Access Control for APIs

June 25, 2019

We're excited to announce the 2nd webinar in our series. The upcoming webinar "Scalable Access Control for APIs" is taking place on Wednesday 28th August at 3:00 PM CEST.

Watch LiveCast: Scaling API Security For Large Enterprises

June 20, 2019

This week Curity’s Daniel Lindau participated in a Nordic APIs LiveCast exploring API security strategies for large enterprises. He talked about how you can use a standards-based approach, using OAuth and OpenID Connect to scale permissions across groups and large organizations.

2019 Austin API Summit Wrap Up

June 5, 2019

Nordic APIs 2nd annual Austin API Summit took place in Austin, Texas 13-15 May. The event doubled in size from last year, and as organizers of the event we're obviously thrilled. An international speaker panel from a wide range of industries involved in APIs, discussed the many faculties of developing and sustaining a thriving API-first organization.

Curity accelerates growth with investment led by Fairpoint Capital

June 3, 2019

We are pleased to tell you that we are speeding up growth by completing an investment led by Fairpoint Capital, an offshoot of SEB, one of Sweden's largest banks.

We're proud to support TechWorld Summit

May 24, 2019

Curity will join the TechWorld Summit in Stockholm on June 4th. You will be able to meet us in person at our booth as well as hear Curity's Travis Spencer talk about identity management and API Security related questions .

Webinar: Introduction to OAuth and OpenID Connect

May 21, 2019

We're launching a series of free webinars. The first session 'An introduction to OAuth and OpenID Connect' is taking place on Wednesday June 12th at 3:00 PM CEST (9:00 AM EDT).

New resource section on curity.io

May 20, 2019

We've recently published a new resource section on the Curity.io website. The resource center features articles on a range of topics including OAuth scopes, claims, tokens, Single Sign On and more.

Curity joining Nordic APIs LiveCast Scaling API Security For Enterprises

May 6, 2019

Curity will participate in Nordic APIs' LiveCast ‘Scaling API Security For Enterprises’ on Wednesday June 19th. During the hour-long webinar, the speakers will discuss ways to scale API Security for large organizations.

Launching OAuth Tools

April 12, 2019

We’re excited to tell you about OAuth.tools - An OAuth laboratory where you can easily connect to any OAuth server and try the full set of flows. The clean UI lets you see the flows clearly, in what order things happen, what tokens are returned and if signatures are valid and so on.

We're excited to announce the release of Curity Identity Server 4.0

March 19, 2019

We're pleased to announce the release of Curity Identity Server 4.0. This release is very rich in features and includes more improvements than any of our previous releases.

The biggest, and most exciting new feature is delegated administration. It is now event easier to restrict access to any configuration element in the entire data model. Read on for more.

Curity's Stockholm office is growing

March 15, 2019

The Curity team continues to grow, and we are pleased to announce that Peter Hagren and Dimitrios Zografos have just joined our Stockholm office. Read on to learn more about Peter and Dimitris.

Meet us at IDM Europe in Frankfurt

February 15, 2019

Curity will join the IDM Europe conference Frankfurt on March 14th, which we are proud to be a part of. During the conference you will be able to meet us in person at our booth to discuss identity management and API Security related questions.

Curity 3.4.1. Released

January 21, 2019

We are happy to announce that version 3.4.1 of the Curity Identity Server has been released. The latest version contains performance updates and bug fixes that we believe you will find useful. The main update being the pooling of HTTP Clients, which will increase throughput when connecting to downstream services.

Curity hosting OAuth and OpenID Connect workshops at the 2019 Austin API Summit

January 9, 2019

We're pleased to announce that Curity will be hosting two workshops at Nordic APIs 2019 Austin API Summit on May 13th.

Curity will host both an introductory workshop about OAuth and OpenID Connect in Practice, for those who want to learn about the advanced aspects of OAuth and OpenID Connect.

Christmas is the season for giving

December 20, 2018

This year we’re giving a special donation to the Swedish Cancer Society. It is a charity that is very close to our hearts. They do incredibly important work and fund vital cancer research projects.

It’s not too late to give the gift of giving this Christmas. Go to www.cancerfonden.se – or a charity of your choice

Hear from Curity Identity Experts at the 2019 Austin API Summit

December 12, 2018

On May 14-15, 2019, Nordic APIs are hosting the Austin API Summit in Texas. As supporters of Nordic APIs we’re pleased to announce that we will be at the event. Attendees of the Summit will hear from a long list of API experts as well as Curity’s Travis Spencer, Jacob Ideskog and Daniel Lindau.

More info and tickets are available on the website.

Curity 3.3.0. Released!

November 29, 2018

We are happy to announce that version 3.3.0 of the Curity Identity Server has been released. It’s a minor release; but contains several enhancements, fixes and new features that we believe you will find useful.

First Utility has evolved their identity infrastructure with Curity

November 19, 2018

In a recent customer story, Anu Shahi from First Utility talks about how Curity has helped the organization to implement a versatile and modern identity and security mechanism, which supports multi-factor authentication, linking of various types of user accounts, Single Sign On (SSO) as well as user self-service actions.

Quickly Comply with PSD2

November 13, 2018

Version 3.3 of the Curity Identity Server is due out later this month and includes new features to make it easy to comply with PSD2 regulations.

8 Vital OAuth Flows and their Powers

November 12, 2018

OAuth is a powerful solution for many providers. As with any tool, however, it’s only as powerful as it is understood by the user who chooses it. Understanding what OAuth is and, at the very least, having a general overview of each particular flow is extremely important. In a recent blog post, Daniel Lindau, looked at OAuth, and gave a brief rundown of each flow type.

2018 Platform Summit Conference Wrap Up

November 8, 2018

The 2018 edition of the Platform Summit took place in Stockholm 22-24 October. This was the biggest event to date with about 480 total attendees, as organizers of the event we’re obviously thrilled. An international speaker panel from a wide range of industries involved in APIs, discussed the best practices that will propel the global API industry into the future.

Meet us at GOTO Copenhagen

November 7, 2018

On November 19-23 Curity will attend GOTO Copenhagen, which we are proud sponsors of. During the conference you will be able to meet us in person at our booth and discuss API Security related questions.

On Tuesday November 20th (at 11:30) our CEO, Travis Spencer will give a talk on Securing APIs and Microservices with OAuth and OpenID Connect. In addition to this, Jacob Ideskog, Identity Specialist at Curity, is hosting a workshop on OAuth and OpenID Connect in Practice.

Curity at API Security for Open Banking Summit in London

November 6, 2018

Come and meet us at the API Security for Open Banking Summit, taking place 21st November in London. Travis Spencer, our CEO, will give a session on OAuth and OpenID Connect for PSD2, Open Banking and Third-Party Access.

You will also be able to meet us in person at our booth and discuss API Security related issues

Curity 3.1 and 3.2 released

October 8, 2018

We are happy to announce the release of Curity 3.1.0 and 3.2.0. Though not a major update, this release includes a lot of fixes and features. In addition to the thousands of tests that run on each commit, we spent a lot of additional time during this release cycle on testing. We added a lot more tests and ways of testing to help us detect issues more quickly. We also made a lot of improvements to the core system, resulting in a more secure and performant base. We noticed that some flows ran over three times faster and were able to sustain 300% more concurrent users. If you're still on 2.X, you can expect a tremendous speed boost after upgrading!

Curity and Java

September 24, 2018

A forthcoming version of the Curity Identity Server will include a supported Java Virtual Machine (JVM) from Azul Systems, alleviating customers' concerns about the changes to the Oracle JVM licensing model, support terms, and release cycle.

Meet Us at API Con Berlin

September 19, 2018

On September 24 – 26 Curity will attend the API Conference in Berlin, which we are proud sponsors of. During the conference you will be able to meet us in person at our booth and discuss API Security related questions.

Curity at API:World in San Jose

September 9, 2018

Come and meet us next week at the API:World, the world’s largest API conference next week in San Jose, CA between September 10 and 12. Travis Spencer, CEO of Curity, will give a session on Advanced OAuth. Come and and discuss your API security challenges with us at booth #316.

Learn About OAuth and OpenID Connect with Curity at the 2018 Platform Summit

September 7, 2018

On October 22nd, Curity will be hosting two workshops at Nordic APIs 2018 Platform Summit. Later on October 23rd – 24th we will have three speakers from Curity presenting on different API security topics.

New Java Meetup Scheduled: Write once, run anywhere, again!

August 14, 2018

On August 22nd, Curity will host a new Java Meetup together with Oracle, at their office on Söder Mälarstrand 29 in Stockholm.

Curity Identity Server 3.0 Released

June 9, 2018

This is our most featureful, documented, and performant release ever! 3.0 marks a tremendous step forward in terms of capabilities, standard-compliance, user experience, and functionality.

Curity Presents at the API conference in Texas

June 8, 2018

Curity will be joining Nordic APIs event The Austin API Summit in Austin, Texas, on June 11-13th.

Curity Initiates Long-term Collaboration with Verisec

May 25, 2018

Curity and Verisec, the company behind the mobile e-ID service Freja eID, enters into a technical partnership.

New Privacy Policy

May 24, 2018

You may have heard about the new General Data Protection Regulation ("GDPR"), that comes into effect May 25, 2018. Our aim is to be as transparent as possible regarding how and why we process your personal data, and as such we have updated our Privacy Policy.

Meet Curity at the API Conference in London

April 5, 2018

On April 11th – 13th Curity will be exhibiting at the API Conference which will be held at Business Design Centre in London. The CEO of Curity, Travis Spencer, will also be giving a talk: Secure Your APIs and Microservices Using OAuth & OpenID Connect.

Come by our booth and sign up to enter the lottery and you might go home with a Nintendo Switch!

Curity proposes a new IETF standard to secure Single Page Applications with OAuth

March 28, 2018

At IETF 101 in London, we were presenting the recently suggested RFC to the OAuth working group that will allow developers to secure their SPA in a standardized way. Until now, there hasn’t been a way in OAuth for clients to request user authorization when using scripting languages such as JavaScript.

Meet Curity at the APIs for Banking and FinTech Event in Copenhagen

March 15, 2018

On March 22nd, Curity will host a half-day workshop on OAuth and OpenID Connect at Nordic APIs and Copenhagen Fintech’s event APIs for Banking and FinTech, in Copenhagen. If you are architecting your APIs, or doing back-end development, then this workshop is for you – previous experience with the technologies is not required to participate.

Curity is hosting a Java Meetup together with Computer Futures

February 15, 2018

Curity is the proud organizer behind the Stockholm Java User Group meetup. The next meetup will be hosted together with Computer Futures. The meetup, with the theme Patterns and Performance, will take place at 6 pm on February 20th, at SUP 46’s offices on Regeringsgatan 65 in Stockholm. The meetup is free and we will have three speakers presenting.

Learn About Phantom Tokens at API Days in Paris

January 25, 2018

We are happy to be attending API Days in Paris on January 30th, where our CEO Travis Spencer will be holding a session on Secure Your APIs with Phantom Tokens.

In his session, Travis will be talking about how it is not sufficient to simply follow the standards to secure your APIs. How do you properly handle PII and other sensitive data inside JWTs and what about of devs depending on the data where changes to the token format breaks the app? The presentation will show how this is resolved using Phantom Tokens in the Curity Identity Server, still being 100% OAuth 2 compliant and benefiting from JWTs in the API backend protected by normal Reverse Proxy.

The Curity Identity Server Is now OpenID Connect Certified

January 12, 2018

We are very happy to announce that the Curity Identity Server is now OpenID Connect certified by the OpenID Foundation. Curity is a strong proponent of organizations following the OpenID Connect standard and the for many reasons and we’re proud to pass all test required for certification. The working being done in the OpenID Foundation is in the benefit of the entire Internet community. The conformance profiles are: Basic OP, Implicit OP, Hybrid OP and Config OP.