News

Curity's Jonas Iggbom published an article on the Kong Inc. blog. He explains how to implement the Phantom Token approach using the Curity Identity Server, Kong Gateway and Open Policy Agent.

Learn what's new in the latest version of the Curity Identity Server, including the support for DCR pre- and post-processing procedures and JWEs.

Join us on November 9 to learn more about the Token Handler, an advancement of the common Backend for Frontend (BFF) design pattern, and its capacity for improving the security of Single Page Applications.

In August 2021, KuppingerCole published their Leadership Compass for API Security and Management. In this report, Curity is identified as an Overall Leader and as a Market Leader for Product and Innovation Leadership.

Curity's Gary Archer shares his OAuth expertise on the Nordic APIs blog. He outlines the most common OAuth vulnerabilities in APIs, web and mobile clients, and ways to mitigate them.

On September 29, tune in to Nordic APIs LiveCast to learn how to evolve hypermedia for new API use cases, including driving a sophisticated authentication flow.

Curity are pleased to take part in the European Identity and Cloud Conference 2021. Curity's CEO Travis Spencer will present a talk on using Hypermedia to adapt client-side login to go beyond passwords.

Learn what's new in the latest version of the Curity Identity Server, including support for rolling SSO and refresh tokens, Java 11 upgrade, and Hypermedia Authentication API improvements.

Join us on August 24 to dig into the OpenID protocol for creating safe APIs: The Financial-grade API (FAPI) profile.

Learn what's new in the latest version of the Curity Identity Server, including the support for PAR, JAR, JARM, and encrypted request objects, as well as Amazon DynamoDB support.

We are excited to announce the launch of the Curity blog, where we'll be sharing thoughts on API security and identity and access management.

Several German companies have chosen the Curity Identity Server to run and improve their digital offerings, protect high-value data and ensure secure authentication of their customers and employees.

The Curity Identity Server version 6.2 now conforms to the CIBA profile of the OpenID Connect protocol.

Brazilian Platform, Inter, has chosen Curity as a key provider of application security solutions to address and meet the requirements of Open Banking Brazil.

Learn what's new in the latest version of the Curity Identity Server, including the support for Client Initiated Backchannel Authentication and WebAuthn authenticator, as well as extended multi-region and multi-tenancy functionality.

We are announcing the release of Guides, a new type of resource which provides helpful guidance in building your own OAuth and OpenID Connect projects.

Learn how to build a centralized and modular identity architecture based on open standards. We have launched a new online course.

Learn what's new in the latest version of the Curity Identity Server, including the support for credential transformation procedures, new multi-region deployment features, SDK updates for events and actions.

Join us on May 18 to learn how you can level up App2App login with authentication workflows.

Curity's Jacob Ideskog has written an article on the issue of authenticating users with an API, giving an overview of the problem and proclaiming Hypermedia Authentication API the future of mobile and web authentication.

Curity is moving all publications of the Curity Identity Server from Docker Hub to Azure Container Registry (ACR). The containers previously published on Docker Hub will be removed on May 24, 2021.

Nordic APIs review the Curity Identity Server Community Edition to see how it can be used to control API access and protect applications.

Join us on April 14 to learn how you can implement a more powerful, scalable, and flexible approach to authorization for your microservices and APIs.

The Curity resource library is constantly growing. This time we have added a new section focusing on financial-grade security solutions.