logo
episode-header-image
Nov 2024
42m 49s

Enhancing OAuth Security and Interoperab...

Software Engineering Daily
About this episode

FAPI is a refinement of the OAuth standard developed by the OpenID Foundation. It was conceived to solve a core problem of providing a consistent approach to API security across the financial industry, with the goal of enhancing interoperability of financial data exchange. It has now been adopted across many different industries in applications where there is an API that requires a heightened authorization security implementation.

Authlete is a service that provides a set of APIs to implement OAuth Authorization Servers and OpenID Connect identity providers, allowing either to be easily made FAPI-compliant.

Joseph Heenan is the CTO at Authlete, and he also leads the certification program at the OpenID foundation. He joins the podcast with Gregor Vand to talk about the origins of FAPI, the motivations for its creation, the status of FAPI development, and more.

Full Disclosure: This episode is sponsored by Authlete.

Software Engineering Daily listeners can get a free 90 day trial of Authlete at https://authlete.com/sed

Gregor Vand is a security-focused technologist, and is the founder and CTO of Mailpass. Previously, Gregor was a CTO across cybersecurity, cyber insurance and general software engineering companies. He has been based in Asia Pacific for almost a decade and can be found via his profile at vand.hk.

 

Sponsorship inquiries: sponsor@softwareengineeringdaily.com

The post Enhancing OAuth Security and Interoperability Using FAPI with Joseph Heenan appeared first on Software Engineering Daily.

Up next
Yesterday
Scaling AI in Enterprise Codebases with Guy Gur-Ari
The rise of language-model coding assistants has led to the creation of the vibe coding paradigm. In this mode of software development, AI agents take a plain language prompt and generate entire applications, which dramatically lowers the barriers to entry and democratizes access ... Show More
52m 5s
Oct 7
SED News: NVIDIA Bets on Intel, Meta’s Demo Crash, and Anthropic’s Explosive Growth
SED News is a monthly podcast from Software Engineering Daily where hosts Gregor Vand and Sean Falconer unpack the biggest stories shaping software engineering, Silicon Valley, and the broader tech industry. In this episode, they cover NVIDIA‘s $5B investment in Intel and $100M s ... Show More
53m 23s
Oct 2
Orkes and Agentic Workflow Orchestration with Viren Baraiya
Modern software systems are composed of many independent microservices spanning frontends, backends, APIs, and AI models, and coordinating and scaling them reliably is a constant challenge. A workflow orchestration platform addresses this by providing a structured framework to de ... Show More
46m 44s
Recommended Episodes
May 2025
From English Literature to Cybersecurity: A Journey Through Blockchain and Security
LINKS: https://distrust.co/software.html - Software page with OSS software Linux distro: https://codeberg.org/stagex/stagex Milksad vulnerability: https://milksad.info/ In this episode of Cybersecurity Today on the Weekend, host Jim Love engages in a captivating discussion with A ... Show More
54m 36s
Apr 2025
Understanding SaaS Security: Insights, Challenges, and Best Practices
In this episode of Cybersecurity Today, host Jim Love delves into the topic of SaaS (Software as a Service) security. Sharing his early experiences promoting SaaS, Jim elaborates on its inevitable rise due to cost-effectiveness and shared development resources. The episode highli ... Show More
38m 5s
Jan 2025
#405: Nemil Dalal, Head of Coinbase Developer Platform, on AgentKit, Bridging AI and Blockchain, Crypto AI Agents, and Building the Onchain Future
Nemil Dalal is the Head of Coinbase Developer Platform, a suite of tools designed to simplify and secure blockchain development. CDP aims to make building onchain applications as accessible as traditional software development, helping developers and creators of all skill levels i ... Show More
37m 22s
Oct 2024
Navigating NIST CSF 2.0: Guide to Frameworks and Governance
In this episode, we sat down with Lukasz Gogolkiewicz, an Australia-based Cybersecurity Leader and former pentester, to explore his journey from offensive security into cybersecurity leadership. Lukasz, also a speaker coach at BlackHat USA, brings valuable insights into what it t ... Show More
36m 29s
Jun 2025
Vibe Coding vs Low-Code/No-Code: Security Risks and CI/CD Pipeline Impacts for Citizen Developers
Explore the evolution from traditional coding to vibe coding and its relationship with low-code/no-code (LCNC) platforms. This comprehensive analysis examines how AI-assisted development and visual programming tools are creating a new generation of citizen developers, transformin ... Show More
9m 42s
Sep 3
Live From Rare Evo: Algorand’s Roadmap to a Billion Users
Marc Vanlerberghe is the Chief Strategy and Marketing Officer at The Algorand Foundation. In this episode, Marc discusses how Algorand is driving mainstream adoption of blockchain technology, decentralizing its network at record speed, and preparing for a future where billions of ... Show More
26m 16s
Mar 2025
#418: Dominic Schwenter, COO of Lisk, on The Ethereum Foundation, The Superchain, and Ethereum’s Role in High-Growth Markets
Dominic Schwenter is the COO of Lisk, the Layer 2 blockchain dedicated to bringing Web3 adoption in emerging markets back to Ethereum. Dominic’s understanding of blockchain technology and its applications has positioned him as a thought leader in the industry, contributing to num ... Show More
32m 52s
Sep 10
LIVE from Rare Evo: How Citi is Bridging The Gap Between Web2 and Web3
Ryan Rugg, Global Head of Digital Assets for Citibank’s Treasury and Trade Solutions (TTS), discusses their approach to integrating Web 2.0 and 3.0. She shares insights on Citi Token Service, a new solution designed to provide 24/7 liquidity and borderless transactions, and expla ... Show More
18m 22s
Feb 2025
Managing End Point Storage in Hybrid Data Strategies for Financial Services - with Yonas Yohannes of Oracle
Today’s guest is Yonas Yohannes, CTO of FinTech and FIS at Oracle. An accomplished executive and author, Yonas joins us on today’s podcast to explain the evolving role of endpoint storage for driving new AI capabilities at the edge. He breaks down AI’s true value beyond the marke ... Show More
22m 21s
Nov 2019
#E38 - Favoriser le web éthique et décentralisé avec Kévin Dunglas
Kévin Dunglas est coopérateur Les Tilleuls et contributeur à l'open source. Nous avons échangé avec lui sur les objectifs des protocoles Mercure et Vulcain qu'il souhaite voir standardisés. On parle aussi politique et éthique. Sur les outils proposés par les GAFAM, Facebook en tê ... Show More
25m 44s
Listen to millions of songs and podcasts on Anghami