Hi all, Since there was interest to discuss the PKCE Chosen Challenge attack and potential mitigations like IVAR in more detail, I reserved the room *"Centre Ville" at 8:30 am on Thursday* for a side meeting on this topic.
Slides describing the attack: https://datatracker.ietf.org/meeting/105/materials/slides-105-oauth-sessa-oauth-security-topics-00 IVAR draft: https://datatracker.ietf.org/doc/draft-fett-oauth-ivar/ Hope to see you there! -Daniel
_______________________________________________ OAuth mailing list [email protected] https://www.ietf.org/mailman/listinfo/oauth
