pseudonyms?
-
Single Sign-On (SSO) allows users to conveniently authenticate to many Relying Parties (RPs) through a central Identity Provider (IdP). SSO supports unlinkable authentication towards the RPs via pairwise pseudonyms, where the IdP assigns the user an RP-specific pseudonym. This feature has been rolled out prominently within Apple’s SSO service. While establishing unlinkable identities provides privacy…
-
I’m a software developer that would like to move to a career in security and I started searching vulnerabilities in open source projects to have something interesting to put on my resume. After discovering some low impact vulnerabilities I’ve found a big one (an unauthenticated RCE). I agreed with the maintainer to not disclose the…