OAuth for MCP - Internet Identity Workshop October 2025

tag:speakerdeck.com,2005:/aaronpk tag:speakerdeck.com,2005:Talk/1470317 2025-11-24T20:46:24-05:00 2025-11-24T20:48:34-05:00 OAuth for MCP - Internet Identity Workshop October 2025 Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/1380520 2025-06-06T16:19:43-04:00 2025-06-06T16:22:38-04:00 The State of OAuth 2025 - Identiverse https://identiverse.com/idv25/session/?idvid=2812734 Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/1461885 2025-11-06T13:31:48-05:00 2025-11-06T13:51:14-05:00 OAuth for MCP Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/1270601 2024-10-31T17:33:23-04:00 2024-10-31T17:43:57-04:00 IIW 39 - OAuth 101 Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/1417437 2025-07-31T10:32:13-04:00 2025-07-31T10:43:18-04:00 OAuth in Native Apps - OAuth Security Workshop Slides from my presentation on OAuth in Native Apps at the OAuth Security Workshop. Unfortunately the embedded videos don't play in the PDF version. I extracted the video clips and posted them here: https://aaronparecki.com/2024/04/11/23/oauth-native-apps-osw-2024 Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/1068689 2023-08-28T14:06:00-04:00 2023-08-28T14:12:48-04:00 Targeted Logout - OAuth Security Workshop 2023 Presented at the OAuth Security Workshop https://events.oauth.net/2023/08/oauth-security-workshop-2023-2gZNVdvPH0XS Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/1040983 2023-06-21T15:41:36-04:00 2023-06-21T15:43:51-04:00 Enterprise-Ready: Going Beyond MVP Ready to move beyond MVP in the journey of adding enterprise-ready identity in your SaaS app? With the must-have functionality in place, you're ready to make your app stand out, get noticed by enterprise customers, and handle user provisioning and automation that can scale! Slides from Devday23 https://developerday.com/events/devday23-wic Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/868965 2022-05-07T11:55:02-04:00 2022-05-07T12:02:27-04:00 App Integrity Attestations for OAuth - OAuth Security Workshop 2022 Currently, the security of native apps in OAuth is contingent upon registering the app's callback URL with the operating system, preferably as an app-claimed HTTPS URL. While this provides some level of assurance of the app's identity, it is by no means foolproof. Authenticating whether a particular instance of a public client in OAuth is a legitimate instance remains a challenge. This session will explore the possibility of using Apple and Android’s “app attestation” APIs as a form of OAuth client authentication. These APIs are able to leverage on-device private keys and a certificate chain to provide an additional level of confidence that the app making an HTTP request is the same code that was shipped in the app stores. Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/713923 2021-03-12T11:48:38-05:00 2021-03-12T11:50:13-05:00 Intro to OAuth - IETF 110 My presentation at the SAAG meeting at IETF 110 Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/675369 2020-10-20T16:08:06-04:00 2020-10-21T11:55:34-04:00 OAuth 101 - Internet Identity Workshop XXXI https://aaronparecki.com/2020/10/20/8/ Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/666718 2020-09-16T21:43:14-04:00 2020-09-16T21:46:36-04:00 What's New with OAuth and OpenID Connect - API Days Australia https://aaronparecki.com/2020/09/16/23/ Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/663121 2020-09-02T12:08:49-04:00 2020-09-02T12:11:25-04:00 How to Think about OAuth Security - Disclosure 2020 Slides from my talk at Disclosure Conference https://disclosureconference.com/ Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/654325 2020-07-22T10:05:51-04:00 2020-07-22T10:06:51-04:00 OAuth 2.1 - OAuth Security Workshop https://aaronparecki.com/2020/07/22/9/ Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/654315 2020-07-22T09:18:15-04:00 2020-07-22T09:18:48-04:00 Protecting Single-Page Apps using OAuth https://aaronparecki.com/2020/07/22/7/ Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/649894 2020-07-04T12:48:34-04:00 2020-07-04T12:49:57-04:00 The State of OAuth Presented at Interface by API Days Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/637868 2020-05-08T14:51:54-04:00 2020-05-08T14:52:44-04:00 OAuth 2.0 Client Intermediary Metadata - IETF 107 Presented at IETF 107 virtual interim meeting. https://events.oauth.net/2020/05/oauth-virtual-interim-meeting-client-intermediary-and-reciprocal-oauth-BmTavIx802Ez Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/635892 2020-04-28T15:20:09-04:00 2020-04-28T15:23:35-04:00 How to Hack OAuth - Goto Chicago 2020 https://aaronparecki.com/2020/04/28/12/ Aaron Parecki (@aaronpk) tag:speakerdeck.com,2005:Talk/616861 2020-03-31T11:37:47-04:00 2020-03-31T11:44:02-04:00 What's New with OAuth and OpenID Connect? In this talk you'll learn about the latest developments with the OAuth and OIDC specs directly from the standards group. The latest additions to the specs enable richer experiences and better security for applications using OAuth. https://www.oktane20.com/agenda#573 Aaron Parecki (@aaronpk) Aaron Parecki (@aaronpk) on Speaker Deck 2025-11-24T20:46:24-05:00