OAuth 2.0 Security Best Current Practice

URI: https://gptkb.org/entity/OAuth_2.0_Security_Best_Current_Practice
GPTKB entity
Statements (55)
Predicate Object
gptkbp:instanceOf gptkb:Request_for_Comments
gptkbp:author gptkb:Daniel_Fett
gptkb:Torsten_Lodderstedt
gptkb:John_Bradley
gptkb:Brian_Campbell
gptkb:Vittorio_Bertocci
gptkbp:category gptkb:OAuth_2.0
Best Current Practice
Security
gptkbp:documentType draft-ietf-oauth-security-topics
gptkbp:focusesOn OAuth 2.0 security recommendations
https://www.w3.org/2000/01/rdf-schema#label OAuth 2.0 Security Best Current Practice
gptkbp:publishedBy gptkb:IETF
gptkbp:recommendation gptkb:OAuth_2.0_Authorization_Server_Metadata
gptkb:OAuth_2.0_Device_Authorization_Grant
PKCE for all clients
OAuth 2.0 Token Introspection
OAuth 2.0 Token Revocation
OAuth 2.0 Authorization Server Token Replay Protection
OAuth 2.0 Authorization Server Token Binding to Client
OAuth 2.0 Authorization Server Token Scope Limitation
OAuth 2.0 Authorization Server Token Issuer Validation
OAuth 2.0 Authorization Server Client Authentication
OAuth 2.0 Authorization Server Token Confidentiality
OAuth 2.0 Authorization Server Nonce Parameter Usage
Avoiding Implicit Grant
OAuth 2.0 Authorization Server Token Signature Validation
OAuth 2.0 JWT Secured Authorization Response Mode (JARM)
OAuth 2.0 Authorization Code Grant with PKCE
OAuth 2.0 Authorization Server Issuer Identifier
OAuth 2.0 Authorization Server Mix-Up Mitigation
OAuth 2.0 Authorization Server Public Clients
OAuth 2.0 Authorization Server Token Binding
OAuth 2.0 Authorization Server Token Encryption
OAuth 2.0 Authorization Server Token Expiration
OAuth 2.0 Authorization Server Token Integrity
OAuth 2.0 JWT Access Tokens
OAuth 2.0 Mutual TLS
OAuth 2.0 Token Binding
Proof-of-Possession tokens
Sender-Constrained Access Tokens
OAuth 2.0 Authorization Server Token Audience Restriction
OAuth 2.0 Authorization Server Token Binding to Device
OAuth 2.0 Authorization Server Token Binding to Resource Server
OAuth 2.0 Authorization Server Confidential Clients
OAuth 2.0 Authorization Server Token Binding to Session
OAuth 2.0 Authorization Server Token Binding to User
OAuth 2.0 Authorization Server Redirect URI Validation
OAuth 2.0 Authorization Server State Parameter Usage
OAuth 2.0 Authorization Server Token Binding to Transaction
gptkbp:replacedBy OAuth 2.0 Threat Model and Security Considerations (RFC 6819)
gptkbp:status gptkb:Request_for_Comments
gptkbp:url https://datatracker.ietf.org/doc/html/draft-ietf-oauth-security-topics
gptkbp:bfsParent gptkb:Pushed_Authorization_Requests
gptkbp:bfsLayer 8