Another day, another major internet security flaw (step aside, Heartbleed ). A bug has been found in OpenID and OAuth 2.0, two authentication program ...

OAuth, OpenID Flaw: 7 Facts OAuth, OpenID Flaw: 7 Facts. Authentication-protocol implementation security flaws are not as serious as Heartbleed, but Facebook and other sites must be fixed, say ...

A new security flaw crops up after Heartbleed, but thank God it isn’t as bad as its predecessor. Only a month after Heartbleed almost turned the Internet upside down, another major security flaw ...

A serious vulnerability in both the OAuth and OpenID protocols could lead to complications for those who use the services to login to websites like Facebook, Google, LinkedIn, Yahoo, Microsoft ...

Today, Google and Plaxo released a hybrid protocol that combines OpenID, the open online identity standard, with OAuth, the secure data portability standard. Too often, when a Website wants to ...

A vulnerability discovered in OAuth 2.0 and OpenID – dubbed “Covert Redirect,” a play on Open Redirect – could enable attackers to, at the very least, steal credentials from users of some ...

OAuth and OpenID Authentication Vulnerable To “Timing Attack” July 17, 2010 - 8:58 am. Authentication systems employed by large websites such as Twitter and Digg could ...

OpenID provides one login for a variety of sites, and is used to authenticate that you are who you say you are. OAuth authorizes access so that, say, one website can get your information elsewhere.