Authentication and authorization technologies naturally sit between the roles of enabling technology and key security infrastructure. Both of these roles drive necessary changes in underlying protocols to meet the needs of users and maintain fitness for purpose. The modern authentication protocol landscape relies on multiple overlapping standards, often building upon each other as with OpenID Connect and OAuth. This can lead to challenges for standards development, implementation of products and libraries, and implementation of authentication solutions. This session will provide an illustration of the evolution of current interconnected standards and changes that have been implemented in them. Further, suggestions for handling the challenges of ongoing standards updates will be discussed with the intent of opening ongoing dialogue.

PowerPoint PDF