Javascript Object Signing and Encryption (JOSE) [1] specifies how arbitrary data payloads can be signed and/or encrypted with JSON metadata describing the cryptographic algorithm properties. It offers a very powerful, rich, flexible mechanism that will change the way HTTP service communications are secured. In this presentation, Sergey Beryozkin will provide an overview of JOSE with the examples, describe Apache CXF JOSE implementation and show how typical JAX-RS applications can be JOSE-enabled fast. The use of JOSE inside OAuth2 applications will also be discussed. The talk will conclude with a demo.
Sergey Beryozkin is a software architect at Talend. He is a web services expert leading Apache CXF JAX-RS and OAuth2 projects. He is also a committer of Apache Tika, Camel and Aries.
Wednesday April 15, 2015 9:00am - 9:50am CDT
Texas V