all InfoSec news
Traveling with OAuth – Account Takeover on Booking.com
Security Boulevard securityboulevard.com
OAuth (Open Authorization) is a modern, open authorization standard designed to allow cross-application access delegation – for example, allowing your application to read data from your Facebook profile. Combined with the proper extensions, OAuth can also be used for authentication – for example, to log into your application using Google credentials.
Since its first introduction in 2006, OAuth has gained tremendous popularity. Recent studies show that about 90% of the users preferred social login over traditional email registration on websites. …
access account account takeover application authentication authorization booking booking.com credentials data extensions facebook google introduction log oauth profile standard studies takeover