Re: [security-dev] OAuth 2.0 and the Road to XSS: attacking Facebook Platform
Before I read this, I think the XSS attacks are centered around the
public OAuth protocols, one-way SSL + confidential clients pretty much
protect against these issues, IIRC.
On 4/12/2013 4:28 PM, Bruno Oliveira wrote:
Interesting presentation:
http://conference.hitb.org/hitbsecconf2013ams/materials/D2T1%20-%20Andrey...
--
Bill Burke
JBoss, a division of Red Hat
http://bill.burkecentral.com