Threat Post

Critical Vulnerabilities Affect JSON Web Token Libraries

Critical vulnerabilities exist in several JSON Web Token (JWT) libraries – namely the JavaScript and PHP versions – that could let an attacker bypass the verification step. Critical vulnerabilities ...
Dark Reading

JsonWebToken Security Bug Opens Servers to RCE

A high-severity vulnerability (CVE-2022-23529) has been discovered in the popular JsonWebToken (JWT) open source encryption project, which could be used by attackers to achieve remote code execution ...
Security Boulevard

The Complete Guide to Authentication Implementation for Modern Applications

A comprehensive developer guide to implementing secure authentication in modern applications. Covers OAuth 2.0, OIDC, passwordless authentication, passkeys, and enterprise SSO with production-ready ...
ZDNet

Developers getting JSON-based options for enterprise authentication

Options for building enterprise authentication infrastructure are expanding as new RESTful service alternatives emerge to support identity and security needs, such as federation, digital signatures, ...
adtmag.com

New Open Source PASETO Library Offers JWT Alternative

Authentication solution provider Okta has launched a new Java developer library designed to streamline the use of Platform Agnostic Security Tokens (PASETOs) and provide an alternative to JSON Web ...