database logo graphic

RFC 6819

"OAuth 2.0 Threat Model and Security Considerations", January 2013

Canonical URL:
http://www.rfc-editor.org/rfc/rfc6819.txt
This document is also available in this non-normative format: PDF.
Status:
INFORMATIONAL
Authors:
T. Lodderstedt, Ed.
M. McGloin
P. Hunt
Stream:
IETF
Source:
oauth (sec)

Cite this RFC: TXT  |  XML

Other actions: Find Errata (if any)  |  Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

This document gives additional security considerations for OAuth, beyond those in the OAuth 2.0 specification, based on a comprehensive threat model for the OAuth 2.0 protocol. This document is not an Internet Standards Track specification; it is published for informational purposes.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Go to the RFC Editor Homepage.