Takashi Norimatsu
Takashi Norimatsu, Senior OSS Specialist, Hitachi, Ltd. is a maintainer of Keycloak, identity and access management OSS. He has implemented and contributed security features like FAPI security profiles, W3C Web Authentication (WebAuthn) API support. He leads Keycloak's community "OAuth SIG" (Ex FAPI-SIG) as Tech Lead for supporting OAuth/OIDC and its related security features to Keycloak. He has experience constructing high security banking API systems.
Session
02-27
12:00
30min
How to confirm an OAuth2/OIDC product is secure - a conformance test and vulnerability test
Takashi Norimatsu
The talk describes research on conformance tests and vulnerability tests for OAuth2/OIDC and its related specifications to confirm a product supporting such specification is secure. Audience can gain insight into how they check the product is secure.
Side room 1