When I look at the diff between draft 05 and 06 for OAuth 2, it seems that all references to shared secret and cryptography has been removed : http://tools.ietf.org/rfcdiff?url2=draft-ietf-oauth-v2-06.txt
Is it intended ? Does cryptography will be back in chapter "Security Considerations" in next drafts ? Encrypted token principles described in draft 05 are still ok, or do you planned something totally different in next drafts ? Thanks in advance for your feedbacks. -- You received this message because you are subscribed to the Google Groups "OAuth" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/oauth?hl=en.
