OAuth is the industry standard for modern authorization and the foundation of OpenID Connect, the leading authentication and single-sign-on protocol in use today. The upcoming release of OAuth 2.1 promises to bring improved security by default and enhanced user experiences for applications and APIs. Join this session to learn about the latest developments in the OAuth specs directly from Aaron Parecki, the co-author of OAuth 2.1. The session will start with a summary of the changes in the OAuth 2.1 update, including the consolidation of best practices from various RFCs. We’ll then cover a high-level overview of the new security features added by FAPI and touch on the new capabilities possible with Selective Disclosures and Client Attestation. By the end of the session, you’ll better understand how to navigate the emerging collection of OAuth specifications.