![The OWASP Podcast Series artwork](https://is5-ssl.mzstatic.com/image/thumb/Podcasts/v4/08/7e/37/087e3712-f795-6edd-a1d9-a75f35187704/mza_8089725047110589537.jpg/100x100bb.jpg)
Giving a jot about JWTs: JWT Patterns and Anti-Patterns - OWASP Podcast e002
The OWASP Podcast Series
English - June 29, 2022 03:49 - 33 minutes - 30.6 MB - ★★★★★ - 23 ratingsTechnology Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: Threat Modeling using the Force with Adam Shostack - OWASP Podcast e001
Next Episode: Getting Lean and Mean in the DefectDojo
In this episode, Matt Tesauro hosts David Gillman about JWT Patterns and Anti-Patterns. I first met David at LASCON in the fall of 2021 when I sat in on his conference talk. Based on David’s experiences with JWTs we discuss where JSON Web Tokens can help and harm developers who use them. It seems like JWTs can be a mixed bag mostly determined by how you use them. Hopefully this episode will help you avoid any JWT sharp edges if or, more likely, when you work with them.
Show Links:
- Video of David’s presentation at LASCON - https://www.youtube.com/watch?v=xTk4ff0eAUg&list=PLLWzQe8KOh5nv8OBs3j39DNYULfxwv_6V&index=29&ab_channel=LASCON
- David Gillman on Twitter - https://twitter.com/primed_mover