Liked on May 31, 2020

   Aaron Parecki

The Real Cause of the Sign In with Apple Zero-Day

Last week, a security researcher discovered and disclosed a zero-day bug in Sign In with Apple, and collected a $100,000 bounty.

Sign In with Apple is similar to OAuth and OpenID Connect, with Apple’s own spin on it. While there were some critical bugs due to Apple’s initial poor.

May 31, 2020, 8:49 p.m.

Read full post →