OSW 2020

21-24 July 2020

The OAuth Security Workshop 2020 is a virtual event.

Full program (pdf)

OSW2020 as a virtual event

As in 2019, the OSW will be a mix of pre-scheduled workshops and talks, and an unconference part where every participant can propose and conduct a session.
Sessions in the unconference are often driven by recent discussions in the community, but can also be used to deep-dive into topics from the talks and workshops, or to discuss or work on any OAuth-related topic.
The event will be free of charge, but a prior registration is required: registration site.
.
The next OSW (2020+1) will be held in Trondheim, Norway in 2021. Details will follow as soon as reliable planning of events is possible

About the OAuth Security Workshop

The aim of the OAuth Security Workshop (OSW) is to improve the security of OAuth and related Internet protocols by a direct exchange of views between academic researchers, IETF OAuth Working Group members and industry.
While the standardization process of OAuth ensures extensive reviews (both security and non-security related), further analysis by security experts from academia and industry is essential to ensure high quality specifications. Contributions to this workshop can help to improve the security of the Web and the Internet.
OSW 2020 will be the 5th workshop this far. The previous events were held at:

Schedule outline

July 21
(Workshop day)
On the first day, we will have two workshop slots with up to 3 hours each. If needed, multiple workshops can run in parallel.
July 22
(Talks day)
The second day starts with the official opening of the workshop, followed by two tracks of talks with eight talk slots each. Each talk is 25 minutes.
July 23 & July 24
(Unconference days)
At the beginning of each of the two days, sessions are proposed and scheduled in the plenum. Afterwards, we will have up to three session tracks with five slots each (four plus closing on the last day), 45 minutes each

Schedule

Please find the schedule in various time zones below. The full schedule for talks and workshops will be published in June.
Unless explicitly mentioned, all times are given in UTC+2 (CEST).
July 21 PDT (-7) CDT (-5) EDT (-4) UTC CEST (+2) JST (+9)
Opening 05:00 07:00 08:00 12:00 14:00 21:00
Workshop Slot 1 05:15 07:15 08:15 12:15 14:15 21:15
Break (15 min) 06:45 08:45 09:45 13:45 15:45 22:45
Workshop Slot 1 (cont'd.) 07:00 09:00 10:00 14:00 16:00 23:00
Break (30 min) 08:30 10:30 11:30 15:30 17:30 00:30
Workshop Slot 2 09:00 11:00 12:00 16:00 18:00 01:00
Break (15 min) 10:15 12:15 13:15 17:15 19:15 02:15
Workshop Slot 2 (cont'd.) 10:30 12:30 13:30 17:30 19:30 02:30
End 12:15 14:15 15:15 19:15 21:15 04:15
July 22 PDT (-7) CDT (-5) EDT (-4) UTC CEST (+2) JST (+9)
Opening 05:00 07:00 08:00 12:00 14:00 21:00
Talk Slot 1 05:30 07:30 08:30 12:30 14:30 21:30
Talk Slot 2 06:00 08:00 09:00 13:00 15:00 22:00
Break (30 min) 06:30 08:30 09:30 13:30 15:30 22:30
Talk Slot 3 07:00 09:00 10:00 14:00 16:00 23:00
Talk Slot 4 07:30 09:30 10:30 14:30 16:30 23:30
Break (60 min) 08:00 10:00 11:00 15:00 17:00 00:00
Talk Slot 5 09:00 11:00 12:00 16:00 18:00 01:00
Talk Slot 6 09:30 11:30 12:30 16:30 18:30 01:30
Break (30 min) 10:00 12:00 13:00 17:00 19:00 02:00
Talk Slot 7 10:30 12:30 13:30 17:30 19:30 02:30
Talk Slot 8 11:00 13:00 14:00 18:00 20:00 03:00
End 11:30 13:30 14:30 18:30 20:30 03:30
July 23 & July 24 PDT (-7) CDT (-5) EDT (-4) UTC CEST (+2) JST (+9)
Session Planning (~45 min) 05:00 07:00 08:00 12:00 14:00 21:00
Session Slot 1 06:00 08:00 09:00 13:00 15:00 22:00
Session Slot 2 07:00 09:00 10:00 14:00 16:00 23:00
Break (60 min) 08:00 10:00 11:00 15:00 17:00 00:00
Session Slot 3 09:00 11:00 12:00 16:00 18:00 01:00
Session Slot 4 10:00 12:00 13:00 17:00 19:00 02:00
Session Slot 5 / Closing 11:00 13:00 14:00 18:00 20:00 03:00
End 12:00 14:00 15:00 19:00 21:00 04:00

Submit your proposals for talks and sessions

We seek proposals for sessions (talks, interactive discussions, ...) and tutorials related to OAuth, OpenID Connect, and other technologies using OAuth under the hood. Contributions regarding technologies that are used in OAuth/OIDC or impact the security of OAuth, such as JOSE or web technology, are also welcome.

Areas of interest where OAuth can be used as enabler of innovative scenarios include:
  • Financial, e-government and health applications
  • Mobile and Strong authentication.
  • Federated Identity.
  • Privacy-enhancing technologies.
  • IoT

Please submit your proposals here

OSW 2020 is sponsored by

OSW 2020

21-24 July 2020