The lead author of OAuth 2.0 calls it a ‘bad protocol’ and jumps ship

oauth 2.0 OAuth 2.0 protocol author Eran Hammer-Lahav is resigning from the project, and he doesn’t mince words about why. “This is a case of death by a thousand cuts, and as the work was winding down, I’ve found myself reflecting more and more on what we actually accomplished,” he wrote in a blog post yesterday. “At the end, I reached the conclusion that OAuth 2.0 is a bad protocol… It is bad enough that I no longer want to be associated with it. It is the biggest disappointment of my career.”

OAuth 2.0, introduced in May of 2010, is the latest iteration of OAuth, the open standard that allows sites to communicate and share user content from their respective platforms given users’ permission. It’s the tool that, for example, gives a third party the ability to post content to Twitter or Facebook. It’s been operating since 2007, and it’s been a critical piece of the social networking data landscape since.

And now it appears the evolution of the protocol is broken. Hammer-Lahav says in comparison with OAuth 1.0, 2.0 is “more complex, less interoperable, less useful, more incomplete, and most importantly, less secure.” He mentions that while advanced developers won’t have an issue with security, the vast majority are likely to experience problems. Hammer-Lahav goes as far as to say that if you’re successfully operating with version 1.0, then don’t upgrade.

He predicts that the community around OAuth will continue to dissolve and be replaced by new platforms more closely aligned with what the original protocol was trying to do, and that these will be where developers start to turn. Turning to IETF, the Internet Engineering Task Force, meant OAuth become more beholdened to enterprise companies, and that this killed the innovation and flexibility of OAuth’s original engineering community.

The harsh words and gloomy projections should pique outside developer interest in creating something more agile – something that could be adopted en masse by the various platforms interested in permission systems for data sharing. Which is, as you can assume, a very high number. 

Emerging Tech

Meet the gene-edited bacteria that could make cannabis plants obsolete

Ever wanted to brew cannabis like you brew craft beer? At UC Berkeley, biologists have managed to engineer brewer’s yeast so that it produces the main cannabinoids found in marijuana.
Gaming

These are the must-have games that every Xbox One owner needs

More than four years into its life span, Microsoft's latest console is finally coming into its own. From Cuphead to Halo 5, the best Xbox One games offer something for players of every type.
Gaming

Has it really been 17 years? The past, present, and future of the Xbox

From DirectX Box to 720, it's been a long, strange trip for Microsoft's Xbox gaming console. Here is what happened, from its odd beginnings to the rumored Scarlett console with streaming.
Gaming

Google Stadia is the upcoming Netflix for games that will hurt game creators

Google Stadia promises a world where gaming is more convenient than ever, but it’s a future that will damage the way people make games.
Computing

Former student uses USB Killer device to fry $58,000 worth of college’s PCs

A former student used a USB Killer device to short circuit more than $58,000 of computers at a private New York college earlier this year. The student pled guilty to the charges and sentencing is scheduled to begin in August.
Computing

AMD Ryzen CPU prices get slashed ahead of Ryzen 3000 release

AMD's Ryzen CPUs have had their prices slashed as we edge towards the release of their third generation. Whether you're a gamer or someone who needs multi-threaded performance, there's a deal for everyone with some heavy discounts to take…
Computing

The number pad on HP’s Chromebook 15 makes spreadsheet work a breeze

HP's Chromebook 15 comes with a 15.6-inch display, a metal keyboard deck with full-size keys, and a dedicated number pad, making it the second Chromebook model, following Acer's Chromebook 715, to be suited for spreadsheet work.
Computing

Worried about your online privacy? We tested the best VPN services

Browsing the web can be less secure than most users would hope. If that concerns you, a virtual private network — aka a VPN — is a decent solution. Check out a few of the best VPN services on the market.
Computing

Gaming on a laptop has never been better. These are your best options

Gaming desktops are powerful, but they tie you down to your desk. For those of us who prefer a more mobile experience, here are the best gaming laptops on the market, ranging from budget machines to maxed-out, wallet-emptying PCs.
Computing

Here's how you can download the best free music players for your Mac

Tired of your Mac's default music player? Take a look at our picks for the best free music players available for your Apple rig. Whether you're a casual listener or an audiophile, you're sure to find something that fits your needs here.
Computing

Want to make calls across the internet for less? Try these great VOIP services

Voice over IP services are getting more and more popular, but there are still a few that stand above the pack. In this guide, we'll give you a few options for the best VOIP services for home and business users.
Gaming

Transform into the ultimate leader with our tips and tricks for Civilization 6

Civilization VI offers both series veterans and total newcomers a lot to chew on from the get-go. Here are some essential starting tips to help you master the game's many intricacies.
Computing

AMD’s 2020 Ryzen CPUs could have a big boost in power efficiency

The sequel to AMD's Zen 2-based Ryzen 3000 CPUs is slated for a 2020 release and when it arrives, could leverage the new Zen 3 architecture to deliver impressive gains to performance and power efficiency.
Computing

The iPhone’s Screen Time and Siri Shortcuts could land on Macs this year

For its desktop computers, it appears that Apple may continue to draw from the iPhone for inspiration. iOS 12 features, like Screen Time and Siri Shortcuts, are believed to be making their way to MacOS this year at WWDC in June.