The venue for in-depth technical discussions on
OAuth, OpenID & Co.

The OAuth Security Workshop (OSW) is the premier forum for in-depth technical discussions on OAuth, OpenID, and related related technologies.

By fostering a direct and open collaboration between industry professionals, academic researchers, and members of standardization groups, OSW has in a unique way helped to shape and improve internet protocols. It has even played a pivotal role in developing new ones, such as the JWT Access Token Profile, DPoP, and SD-JWT. Leading researchers showcase their cutting-edge results on identity protocol security at OSW.

OSW also serves as an independent venue for the exchange between various working groups (IETF OAuth and GNAP working groups, OpenID Foundation, etc.).

“The OSW remains the best venue for getting things done in the identity protocols space. The best minds in the industry are there, all eager to solve hard problems: expect two days of relentless focus and remarkable results.”
­— Vittorio Bertocci

“OSW has given me the opportunity to listen, learn and discuss with the best and most experienced people in this domain. If you’re lucky you might even get to witness or participate in the birth of a new international standard or two.”
— Steinar Noem, Udelt AS

“The OAuth Security Workshop is the leading venue where experts from academia and industry join forces to discuss and harden current and future identity standards.”
— Prof. Ralf Küsters, University of Stuttgart

Feb 26-28, 2025, Harpa Conference Center, Reykjavik/Iceland

Hosted by Signicat

In-person only.

Details


Past Events

Photo by DAVID ILIFF. License: CC BY-SA 3.0

OSW 2024: Rome, Italy

April 10-12, 2024, Auditorium Antonianum, Rome

Hosted by Fondazione Bruno Kessler. Co-located with TDI 2024.

In-person only.

Details


Photo by DAVID ILIFF. License: CC BY-SA 3.0

OSW 2023: London, UK

August 22-24, 2023, Royal Holloway University, London

In-person only.

Details


OSW 2022: Trondheim, Norway

May 4-6, 2022, Trondheim

In-person only.  

Details


OSW 2021: virtual

30-11-2021 and 01-12-2021

A fully-virtual, two-day event. 

Details

Recordings

OSW 2020: virtual

July 2020

Originally planned to take place in Trondheim, Norway, the OSW 2020 was a fully virtual event, hosted by Computer, Menschen, Dinge e.V., Trier.

Recordings

OSW 2019: Stuttgart, Germany

March 2019, Stuttgart

The fourth OSW was hosted by the Institute for Information Security, University of Stuttgart.

OSW 2018: Trento, Italy

March 2018, Trento

The third OSW was hosted by the Security and Trust research unit of the Bruno Kessler Foundation (FBK).

OSW 2017: Zurich, Switzerland

July 2017, Zurich

The second OSW was hosted by the Zurich Information Security and Privacy Center of ETH Zurich.

OSW 2016: Trier, Germany

July 2016, Trier

The first official OAuth Security Workshop, hosted by the Chair for Information Security and Cryptography, University of Trier.

OSW 2015: The Beginning

November 2015, Darmstadt/Germany

Where everything began. Hosted by Deutsche Telekom.