TechTalk: Common OAuth Security Mistakes and Threat Mitigations

With vulnerabilities recently surfacing in the OAuth implementations of popular service providers like Yammer, Instagram and Facebook, it’s hard to blame anyone for getting the impression that there are fundamental security flaws in the OAuth protocol. Francois Lascelles, Chief Architect at Layer7, answered OAuth questions live, discussed the common security mistakes made in OAuth implementations…

TechTalk: Avoiding Data Silos Using Linked APIs

Practical problems that software architects on modern product teams face increasingly go far beyond the familiar. Case in point: “Big Data” doesn’t just mean petabytes of data or a data-set that doesn’t fit in a single large RDBMS, anymore. A “distributed system” doesn’t just mean a clever multi-tier architecture or even an AWS deployment happily…

TechTalk: Enterprise Mobility and BYOD

Smartphones, tablets and the apps they run are revolutionizing the way we work. With the BYOD movement gaining strength in the enterprise, executives and managers cannot afford to ignore the existence of workforce mobility — or the security risks it creates. Matt McLarty and Leif Bildoy of Layer7 discussed how enterprises can realize the opportunities…

TechTalk: SSO and OAuth Across Mobile Applications Tech Talk Featuring Francois Lascelles

We hosted a live interactive TechTalk on security and Single Sign-On (SSO) for mobile applications. And welcomed back Layer7′s Chief Architect and resident OAuth expert Francois Lascelles. He discussed how to provide SSO for mobile applications, without compromising the security of the apps or the APIs that power them. Francois also took questions throughout the…