ZDNet

Cloud-era authentication infrastructure taking shape

The OpenID Foundation Wednesday blessed the final version of OpenID Connect, an authentication protocol that is being called a cornerstone for scalable, standardized identity-based access control ...
Dark Reading

Security Flaw Found In OAuth 2.0 And OpenID; Third-Party Authentication At Risk

A security researcher has uncovered serious security vulnerabilities in the technologies used by many websites to authenticate users via third-party websites. A blog posted late last week revealed the ...
The Next Web

OAuth and OpenID Authentication Vulnerable To “Timing Attack”

Authentication systems employed by large websites such as Twitter and Digg could be at risk after researchers have discovered a basic flaw that could crack a large number of open-source software ...