Lmst

Spain: #Inspection of so-called short-distance transports 👉 Take less than 8 hours and are subject to different regulations. No explicit #authorisation from official #veterinarians is required to carry out a #short-distance transport. As a result, these #transports are often much less controlled.

Hat jemand Ideen für barrierefreie bereits existierende Technologien die Banken als zweiten Autorisierungsfaktor einbauen können?

Die App-Lösungen schließen (spastisch) Gelähmte Anwender*innen aus, ebenso wie TAN-Generatoren für die mensch sehend und eine Hand zur Bedienung braucht.

Ideal wäre, wenn das System noch mit Informationen parametrisiert werden kann, damit klar ist wofür gerade eine Freigabe erteilt wird.

Können Hardtoken wie #Yubikey sowas unterstützen?

Oder können Google Authenticator, Microsoft Authenticator oder #Authy sowas?

Ich hätte MS und Google eigentlich ungern an Bord.

#a11y #2FA #inklusion #banking #authorisation

Gern für Reichweite retooten

Data on EU #novelfood regulations & #innovations suggests a #regulation meant to simplify product #authorisation is limited by precautionary & risk analysis principles, undermining #investors' expectations & adding uncertainty, leading to delayed #investments in new products: https://doi.org/10.1111/1477-9552.12622

Эта уязвимость позволяла злоумышленникам получать доступ к учетным записям, изменяя лишь параметры в публично-доступном URL, что могло привести к компрометации конфиденциальных данных.

Вечером 12 декабря в 19:00 за чашечкой чая ☕️ с Алёной Батицкой и Егором Левченко
@frtvt из Доки обсудим подобные угрозы безопасности веба 🕸️Присоединяйтесь, чтобы узнать, как защитить свои интерфейсы! 💻🔒

#WebSecurity #Security #WebAuthn #Passkey #Authentication #IDOR #Authorisation

https://www.youtube.com/watch?v=yr_pupMqzgw

I've been playing with #cerbos, an #authorisation server. This post lays out my experiences including why I think an authorisation server is a must have complement to #authentication (like using a single sign-on system) for modern application development. westergaard.blog/2024/10/authorisation-server-cerbos/

Microsoft office declaring that files can't be found/saved/printed because I lack authorisation. Is anyone having these problems suddenly? Nightmare
#MS #MSoffice #MSExcel #MSword #authorisation

All Maybank2u Biz Transactions Will Require Secure2u Authorisation Starting 26 November 2023 #authorisation #banking #biz #maybank #maybank2u #secure2u

https://www.lowyat.net/2023/310900/maybank2u-biz-require-secure2u/

"Why not just implement Feature Flags as #authorisation
^ has probably popped into someone's head more than once.

It's a fairly reasonable thought, but the devil is in the details. IMO it's like saying we should put up traffic lights instead of using traffic cones.

https://ntietz.com/blog/feature-flags-and-authorization/

#featureflags vs #authz #rbac

#Germany proposes #rules to #ease #legal #changes of #gender.

The new #law would end #expert #assessments and #court #authorisation for #adults to change their #firstname and #legalgender.

#Women #Nonbinary #Transgender #LGBTQ #Transitioning #NameChanges #SelfID

https://www.express.co.uk/news/world/1768419/Germany-proposes-rules-to-ease-legal-changes-of-gender

A lot has happened since Wonderful’s #FCA authorisation in October, but it’s never too late to say a huge thank you to DWF, who supported us throughout. 🙏🙏🙏

#payments #authorisation #OpenBanking

https://dwfgroup.com/en/news-and-insights/insights/2022/12/wonderful-payments

Anyone willing to share learning resources re: how to approach/think about and implement a general #authorisation solution for multiple services?

One that I’ve found useful is Oso’s auth academy https://www.osohq.com/academy ; it gives overviews of different approaches and the concrete pros and cons of each.

Overall, I’ve found it quite difficult to find good, hands-on resources for _developers_ (seems most are sysadmin-focused) when it comes to #IAM, and I don’t think I’m alone.

#authorization