View profile

scottbrady91.com - June '21

Scott Brady
Scott Brady
@scottbrady91
A new article and a new newsletter.

Client authentication vs. PKCE
This month’s article covers a question I’ve received a few times: “Does OAuth’s Proof-Key for Code Exchange (PKCE) replace client secrets”. The short answer is no, but this article digs into it a bit further than that.
Client Authentication vs. PKCE: Do you need both?
Client Authentication vs. PKCE: Do you need both?
Learn how OAuth Proof-Key for Code Exchange (PKCE) does not replace client authentication (e.g. secrets) and why you should use both where possible.
www.scottbrady91.com
Since we last spoke...
There have been some new articles since my last email, focusing on password UX and password hash migration.
Authenticated Encryption in .NET with AES-GCM
Authenticated Encryption in .NET with AES-GCM
Learn how to use AES-GCM encryption in .NET for authenticated encryption, giving you the usual confidentiality and an additional integrity check.
www.scottbrady91.com
Beware of Password Shucking
Beware of Password Shucking
Learn how password shucking attacks rehashed or pre-hashed passwords by stripping your password hashes of their strong outer password hashing algorithm.
www.scottbrady91.com
Integrating ASP.NET Identity Password Policies with Password Managers
Integrating ASP.NET Identity Password Policies with Password Managers
Learn how to automatically set HTML passwordrules based on your ASP.NET Identity password options, using the newpassword tag helper from ScottBrady.IdentityModel.
www.scottbrady91.com
Perfecting the password field with the HTML passwordrules attribute
Perfecting the password field with the HTML passwordrules attribute
Learn how to integrate sign up forms with password generators by using the autocomplete and passwordrules HTML attributes.
www.scottbrady91.com
In other news...
I am now a father! My son was born in April, and after 9 weeks, I’ve finally found some time to get my improved newsletter back on track.
If you have any article ideas, let me know. I’m always on the lookout for new topics!
Did you enjoy this issue? Yes No
Scott Brady
Scott Brady @scottbrady91

Stay up to date with a monthly email containing my latest articles, newest courses, favorite links, and the odd picture of my cats.

In order to unsubscribe, click here.
If you were forwarded this newsletter and you like it, you can subscribe here.
Created with Revue by Twitter.