Brian Campbell, Ping Identity
Technical overview of JWT, the JSON Object Signing and Encryption (JOSE) suite of specifications, and how to talk about and use JWT and JOSE effectively.
Handwritten Text Recognition for manuscripts and early printed texts
CIS14: I Left My JWT in San JOSE
1. ``
Brian Campbell!
@__b_c!
Cloud Identity Summit 2014!
http://www.slideshare.net/briandavidcampbell!
!
A technical overview of JSON Web
Token (JWT) and JavaScript Object
Signing and Encryption (JOSE)!
5. • Not even official RFCs yet but
– Well regarded
– And widely used:
• OAuth
• OpenID Connect
• Mozilla Persona (ahem)
• W3C Web Cryptography API
• + more…
Three nerds holding a blurry piece of paper they tell me is
some kind of award for the JOSE & JWT work.
http://www.kuppingercole.com/article/award2014 !
5
JWT + JOSE in the Wild!
6. What’s in a Name?!
https://twitter.com/metadaddy/status/454422069199900672
JW*!
8. What would JOSE do? ‡ !
Call it
JW-STEAK
‡ I reluctantly credit Paul Madsen with WWJD. Unless you are offended by it, in which case
I’m not at all reluctant about blaming him. JW-
JWS
JWT
JWE
JWA
JWK
9. Because who doesn’t like a
good steak? !
Don Julio is a famous (to gringo tourists anyway) steakhouse
in Buenos Aires, Argentina - https://flic.kr/p/ezE99U
11. Awkward Transition… into some of the more technical details!
11
Few things are more
awkward than Paul Madsen
eating a Slim Jim while
wearing a sailor's outfit and
bowtie