all InfoSec news
Cross-Tenant Request Forgery Attack in Multi-Tenancy Environments - Albert Yu & Alan Bishop
Nov. 20, 2023, 10:23 p.m. | OWASP Foundation
OWASP Foundation www.youtube.com
Description
To build a SaaS application platform, most platform owners rely on integrations with more popular ecosystems such as Microsoft Azure, Google Workspace, Okta, Github, Atlassian Jira, etc. The industry has moved towards open standards like OAuth for access delegation, but there are several flavors (e.g. 3LO, 2LO, SPA) of OAuth and each flavor works in different scenarios. Some API access mandates a particular flavor of OAuth.
What's adding to the …
alan application atlassian attack azure build ecosystems environments etc forgery github google google workspace industry integrations jira microsoft microsoft azure multi-tenancy oauth okta open standards platform popular request saas saas application standards workspace
More from www.youtube.com / OWASP Foundation
Meet OWASP Top 10 for LLM Apps at RSA!
2 weeks, 3 days ago |
www.youtube.com
The State of Secure DevOps - Security enables Velocity
2 months, 1 week ago |
www.youtube.com
OpenCRE.org - Universal Translator for Security
2 months, 1 week ago |
www.youtube.com
Level Up Your Security Champions (and Your Program)
2 months, 1 week ago |
www.youtube.com
Bootstrap Your Software Security with OWASP SAMM 2.1
2 months, 1 week ago |
www.youtube.com
“Shift Left” Isn’t What You Expected
2 months, 1 week ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Officer Hospital Laguna Beach
@ Allied Universal | Laguna Beach, CA, United States
Sr. Cloud DevSecOps Engineer
@ Oracle | NOIDA, UTTAR PRADESH, India
Cloud Operations Security Engineer
@ Elekta | Crawley - Cornerstone
Cybersecurity – Senior Information System Security Manager (ISSM)
@ Boeing | USA - Seal Beach, CA
Engineering -- Tech Risk -- Security Architecture -- VP -- Dallas
@ Goldman Sachs | Dallas, Texas, United States