ITB 2023 - The Many Layers of OAuth - Keith Casey .pdf

Sep 4, 20240 likes52 views

Testing has become essential in software development, offering benefits in debugging and deployment. This session will guide attendees from basic function tests to advanced techniques like mocking and testing API interactions. Examples will use ColdBox, but most techniques are applicable to other frameworks. The goal is to demystify testing and provide practical skills for effective implementation.

The Many
Layers Of OAuth
Danger Casey
API Problem Solver, GTM Guy, General Nuisance
danger@ngrok.com
May 2023

© ngrok. All rights reserved. Confidential Information of ngrok
01 Intro
02 OAuth Vocabulary
03 The Grant Types
04 Which one when?
05 The fun pain truth lies multitude of specs
06 Closing / Q&A
Agenda

© ngrok. All rights reserved. Confidential Information of ngrok
Who am I?

© ngrok. All rights reserved. Confidential Information of ngrok
Who am I?
https://www.youtube.com/@geekamongthetrees

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
What is OAuth 2.0?
It’s unrelated to OAuth 1.0

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
What is OpenID Connect (OIDC)?
It’s unrelated to OpenID

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
Which is better: OAuth or OpenID Connect?
Trick question: OIDC is part of OAuth

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
Authentication
- vs -
Authorization

ITB 2023 - The Many Layers of OAuth - Keith Casey .pdf

© ngrok. All rights reserved. Confidential Information of ngrok
- Resource Owner is you
- Grant Type (aka Flow) describes the use case
- Tokens represents the authorization, user or state
- Authorization Server (aka Auth Server) creates the tokens
- Scopes are the permissions you request from the Auth Server
- Claims are the fields & data returned from the Auth Server
- Resource Server is where you use the auth and id tokens
Key OAuth Terms

© ngrok. All rights reserved. Confidential Information of ngrok
- Resource Owner is you
- Grant Type how you get the tokens
- Tokens are the tokens
- Authorization Server creates the tokens
- Scopes how you request stuff in the token
- Claims the stuff in the token
- Resource Server where you use the token
Key OAuth Terms (simplified)

© ngrok. All rights reserved. Confidential Information of ngrok
Hotel Key Cards but for Apps

© ngrok. All rights reserved. Confidential Information of ngrok
- Authorization Code Flow
- Implicit Flow
- Resource Owner Password Flow
- Client Credentials Flow
Grant Types (aka OAuth flows)

© ngrok. All rights reserved. Confidential Information of ngrok
Authorization Code Flow
User Auth
Client Auth

© ngrok. All rights reserved. Confidential Information of ngrok
Implicit Flow
User Auth
No Client Auth!

© ngrok. All rights reserved. Confidential Information of ngrok
Resource Owner Password Flow
User Auth
No Client Auth!
Wait. What does that mean!?
The app has your creds!

© ngrok. All rights reserved. Confidential Information of ngrok
Client Credential Flow
Client Auth
No User Auth!?

© ngrok. All rights reserved. Confidential Information of ngrok
Which do I use?
Wait. Where did
that come from?

© ngrok. All rights reserved. Confidential Information of ngrok
Authorization Code Flow with PKCE (RFC 7636)
User Auth
Client Auth

© ngrok. All rights reserved. Confidential Information of ngrok
SAML 2.0 Assertion Flow
Client Auth
No User Auth!?

© ngrok. All rights reserved. Confidential Information of ngrok
Which do I use?

© ngrok. All rights reserved. Confidential Information of ngrok
- Authorization Code Flow
- Implicit Flow - deprecated in favor of Auth Code+PKCE
- Resource Owner Password Flow - not recommended
- Client Credentials Flow
Extensions
- Authorization Code Flow with PKCE
- SAML 2.0 Assertion Flow
- Device Flow
- Okta: Interaction Grant Type
Grant Types (aka OAuth flows)

© ngrok. All rights reserved. Confidential Information of ngrok
OAuth (RFC 6749)

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
Notice:
NOT authentication

© ngrok. All rights reserved. Confidential Information of ngrok
What about those tokens?

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
JWTs to the Rescue!
(JSON Web Tokens)

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
Ha.
You wish.

© ngrok. All rights reserved. Confidential Information of ngrok
JSON Web Token (RFC 7519)

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
So then what do we do?

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
OpenID Connect FTW

© ngrok. All rights reserved. Confidential Information of ngrok
OpenID Connect

© ngrok. All rights reserved. Confidential Information of ngrok
● RFC 6749 OAuth Core
● RFC 7519 JSON Web Token
● RFC 7662 Token Introspection
● RFC 7009 Token Revocation
● OpenID Connect Specification
● RFC 8414 Authorization Server Metadata Discovery
More Pieces!

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
“We support OAuth”
is a meaningless statement

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
“We support OpenID Connect”
is useful (for SSO)

© ngrok. All rights reserved. Confidential Information of ngrok
© ngrok. All rights reserved. Confidential Information of ngrok
Figure out which combo of
specs you need & they have
*RFC 8414 is your best friend

This is my first public speech about way to secure your API. Interective presentation you could find here - https://sergeypodgornyy.github.io/oauth-webbylab-presentation/ Security is something you want to get right. If you need to secure an API right now, I imagine you are worrying about how, exactly, to do it. It is to my surprise that JSON Web Tokens is a topic not often talked about, and I think it deserves to be in the spotlight today. We will see how easy it is to integrate it in an API authentication mechanism. If you want simple stateless HTTP authentication to an API, then JWT is just fine and relatively quick to implement. But JWT is a simple authentication protocol, OAuth is an authentication framework, that enables a third-party application to obtain limited access to an HTTP service. OAuth is a simple way to publish and interact with protected data. It's also a safer and more secure way for people to give you access.

An Authentication and Authorization Architecture for a Microservices WorldVMware Tanzu

The document discusses authentication and authorization architectures for microservices. It describes using OpenAM for centralized authentication and authorization across microservices. Tokens like access tokens, refresh tokens and ID tokens are used to authenticate service-to-service calls in a stateless manner. The document outlines approaches for different tiers of microservices and integrating OpenAM with Cloud Foundry.

ForgeRock Open banking - Meetup 28/06/2018Quentin Castel

The document discusses Open Banking and PSD2, including: - PSD2 is an EU directive aiming to increase competition in financial markets and give users more control over their data. - OBIE is a UK organization that established a standard for financial APIs based on OAuth2 and OIDC to address PSD2. - ForgeRock provides an identity platform that supports the Open Banking standard, and has implemented a model bank for developers.

Standard Based API Security, Access Control and AI Based Attack - API Days Pa...Ping Identity

The document discusses securing APIs and provides an overview of Ping Identity's API security solutions. It begins with an agenda that covers API security best practices, standards, and using AI/ML to detect attacks. It then discusses stakeholders in API security and drivers like digital transformation. The rest of the document demonstrates Ping Identity's API security platform, which uses standards-based approaches like OAuth 2.0 and OpenID Connect for authentication and authorization. It also leverages AI/ML for attack detection, API traffic visibility and reporting.

CIS13: Bootcamp: Ping Identity OAuth and OpenID Connect In Action with PingFe...CloudIDSummit

John DaSilva, Identity Architect, Ping Identity Brian Campbell, Portfolio Architect, Ping Identity If you asked yourself the question, "What is OAuth and will it solve my mobile device SSO headaches?” then this is the session for you! In this bootcamp, you will learn the basic foundations of OAuth, the drivers (the “why”) behind it, the use cases, the protocol flow and basic terminology. Once we have a basic understanding of OAuth, we will explore various implementation strategies for OAuth 2.0. We’ll dissect the Web Server, User Agent and Native Application use cases, and describe how to configure OAuth in PingFederate Authorization Server. We will even take a look at the up and coming OpenID Connect specification. Bring your laptop; a configuration of PingFederate that you can set up and temporary product licenses will be supplied.

CIS13: Introduction to OAuth 2.0CloudIDSummit

The OpenID Connect ProtocolClément OUDOT

The document provides an overview of the OAuth 2.0 authorization framework and the OpenID Connect protocol. It describes the key concepts such as roles, endpoints, tokens, flows, and compares OpenID Connect to SAML. It also discusses how OpenID Connect is implemented in the LemonLDAP::NG software, including supporting the authorization code flow as a relying party and implementing an authorization server.

Stateless authentication for microservices - Spring I/O 2015Alvaro Sanchez-Mariscal

http://www.springio.net/stateless-authentication-for-microservices/ This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth and JWT to achieve a stateless, token-based authentication and authorization using Spring Security in Grails. More specifically, the demonstration will be made using Spring Security REST, a popular Grails plugin written by Álvaro.

De la bonne utilisation de OAuth2 Leonard Moustacchis

This document summarizes key points about OAuth 2.0 usage from a presentation on properly using OAuth2. It discusses: 1) OAuth 2.0 authorization flows like implicit, authorization code, and refresh token and recommends always using the authorization code flow. 2) Best practices like using HTTPS, securing client credentials, and using limited scope access tokens. 3) Validating and storing access tokens securely, such as using the "Authorization: Bearer" header, introspection, and short-lived tokens. 4) Specific guidance for mobile and web clients, emphasizing public clients with PKCE to prevent injection attacks. 5) Future draft specifications around OAuth 2.0 security best practices.

Introduction to SAML & OIDCForgeRock Identity Tech Talks

This document provides an introduction and overview of SAML and OIDC for single sign-on and federated authentication. It describes the key components of each standard, including identity providers, service providers, assertions, flows, and tokens. SAML enables users to authenticate once and access multiple sites using circles of trust, while OIDC builds on OAuth2 and provides additional functionality for authentication with RESTful endpoints and easier token and claims handling.

Consideration on Holder-of-Key Bound Token < from Financial-grade API (FAPI) ...Hitachi, Ltd. OSS Solution Center.

Takashi Norimatsu from Hitachi presented on sender constraint tokens as an alternative to holder-of-key bound tokens from the perspective of an implementer of Financial-grade API security profiles. Holder-of-key bound tokens prevent improper access by requiring proof of possession of the private key corresponding to the public key bound to the token. Sender constraint tokens similarly restrict access to only the specified token sender. The presentation discussed how authorization codes, refresh tokens, and access tokens could realize sender constraints using techniques like PKCE, client binding, and holder-of-key binding.

Stateless authentication for microservices - Greach 2015Alvaro Sanchez-Mariscal

This talk is about how to secure your front-end + backend applications using a RESTful approach. As opposed to traditional and monolithic server-side applications (where the HTTP session is used), when your front-end application is running on a browser and not securely from the server, there are few things you need to consider. In this session Alvaro will explore standards like OAuth or JWT to achieve a stateless, token-based authentication and authorization using Spring Security in Grails.

Open APIs - Risks and Rewards (Øredev 2013)Nordic APIs

Introducing Open APIs and the security risks involved and the great rewards that can be reaped. Going through the advantages of using and publishing APIs and how to get started, how to handle security risks with a "neo-security" stack and how Twitters API has been used to analyse Twitter use in Sweden. Lightning talk from Øredev 7 november 2013 in Malmö Sweden. Presented by Andreas Krohn, Travis Spencer and Hampus Brynolf. More information at http://nordicapis.com/oredev2013.

Stateless authentication for microservices - GR8Conf 2015Alvaro Sanchez-Mariscal

OAuth FTWChris Messina

OAuth is an open protocol that allows secure API authorization through a simple authorization method. It replaces the need for usernames and passwords with tokens and signatures. This allows users to manage third party access to their account without having to change their main password. Many companies have adopted OAuth due to its security and ability to revoke access without changing primary login credentials. Code libraries exist for a variety of programming languages to make OAuth integration easier.

How OAuth and portable data can revolutionize your web app - Chris MessinaCarsonified Team

OAuth is an open protocol that allows secure API authorization through a simple authorization method. It replaces the need for usernames and passwords with tokens and signatures. This allows users to control access to their account without having to change their main password. Many companies have adopted OAuth due to its security benefits over traditional passwords. Developers have created OAuth libraries in many programming languages to make implementation easier.

Auth proxy pattern on KubernetesMichał Wcisło

This document discusses authorization and authentication standards like OAuth2 and OpenID Connect and how an authorization proxy can be used to implement them on Kubernetes. It provides examples of using the authorization code flow and OpenID Connect to authenticate users and delegate access. It also discusses how authorization proxies can be used to secure access to the Kubernetes API and enable fine-grained access management with Istio.

Secure your APIs using OAuth 2 and OpenID ConnectNordic APIs

Session held by Travis Spencer at PayEx and Nordic APIs event "Secure, flexible and modern APIs for Payments" event in Oslo, May 10th. Description: When opening up secure APIs, OAuth 2 and OpenID Connect are the primary standards being used today. Implementing and using these standards can be challenging. In this session, Travis Spencer, CEO of Twobo Technologies, will provide an in-depth overview of these standards and explain how they can be integrated into financial services apps. The overview will include information on: The actors involved in OAuth and OpenID Connect The flows used in the standards What grant types are, which are defined, and the message exchanges of each What scopes are and examples of their use Different classes of tokens and how they are used Overview of the OpenID Foundation’s work in the Financial API WG Attendees will leave with: An overview of OAuth 2 and OpenID Connect Knowledge of the basics necessary to using these standards Resources and information sources where more information can be found

[WSO2 API Manager Community Call] Mastering JWTs with WSO2 API ManagerWSO2

Comment ça marche: OpenID Connect fournisseur d’identité universel de Google ...Leonard Moustacchis

OpenID Connect (OIDC) is an authentication standard built on OAuth2 that allows users to log into applications and websites using their existing digital identities. OIDC supports single sign-on using identity providers like Google to authenticate users, who can then access multiple applications without having to log in separately to each one. The document discusses the OIDC authorization code flow, where users are redirected to an identity provider to authenticate, then given an authorization code to access tokens that can be used to retrieve user information and access protected resources. It also describes how FranceConnect uses OIDC and an identity hub to enable single sign-on access to public services using existing identities from identity providers like Google.

Distributed Authorization with Open Policy Agent.pdfNordic APIs

Configuring Single Sign-On (SSO) via Identity Management | MuleSoft Mysore Me...MysoreMuleSoftMeetup

Configuring Single Sign-On (SSO) via Identity Management | MuleSoft Mysore Meetup #48 Event Link:- https://meetups.mulesoft.com/events/details/mulesoft-mysore-presents-configuring-single-sign-on-sso-via-identity-management/ Agenda ● Single Sign On (SSO) ● SSO Standards ● OpenID Connect vs SAML 2.0 ● OpenID Connect - Architecture ● Configuring SSO Using OIDC (Demo) ● SAML 2.0 - Architecture ● Configuring SSO Using SAML 2.0 (Demo) ● Mapping IDP Groups with Anypoint Team (Demo) ● Q & A For Upcoming Meetups Join Mysore Meetup Group - https://meetups.mulesoft.com/mysore/YouTube:- youtube.com/@mulesoftmysore Mysore WhatsApp group:- https://chat.whatsapp.com/EhqtHtCC75vCAX7gaO842N Speaker:- Vijayaraghavan Venkatadri:- https://www.linkedin.com/in/vijayaraghavan-venkatadri-b2210020/ Organizers:- Shubham Chaurasia - https://www.linkedin.com/in/shubhamchaurasia1/ Giridhar Meka - https://www.linkedin.com/in/giridharmeka Priya Shaw - https://www.linkedin.com/in/priya-shaw

apidays Helsinki & North 2023 - API authorization with Open Policy Agent, And...apidays

apidays Helsinki & North 2023 API Ecosystems - Connecting Physical and Digital June 5 & 6, 2023 API authorization with Open Policy Agent Anders Eknert, Developer Advocate at Styra ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Deep dive into the Open Banking payments flowsForgeRock Identity Tech Talks

Who’s Knocking? Identity for APIs, Web and MobileNordic APIs

This document discusses identity management for APIs, web, and mobile applications. It begins with an overview of trends in cloud computing and APIs. It then discusses how traditional network security is inadequate for these new architectures and that identity has become the new perimeter. The document outlines recommendations for an API identity strategy, including implementing OAuth 2.0 for authorization instead of passwords and leveraging an identity provider to apply enterprise security policies to cloud applications and APIs. It recommends architects design for interoperability across multiple devices, users, locations, and protocols.

Leveraging open banking specifications for rigorous API security – What’s in...Rogue Wave Software

Presented at APIdays Paris. API security is the principal concern when it comes to establishing a trusted API ecosystem. Rightly so, because opening up business systems through APIs by definition expands the attack surface that can be exploited. Although many threat vectors and vulnerabilities are well known, we have to remain on the lookout for new threats continuously. On the positive side, open standards that help defend against security threats are constantly being created and refined. What is even more helpful are the specifications that aggregate relevant standards into a comprehensive API security profile. Excellent examples of these are the current specifications that support open banking initiatives like UK Open Banking and PSD2. Could these specifications not have a wider applicability? In other words, would we be able to benefit from the security guidelines captured in these specifications in other verticals like logistics, retail, energy, healthcare and government, too? In this talk, we will compare security guidelines covered in the specifications and see to what extent they may benefit the wider enterprise API developer community.

CIS 2015 Extreme OpenID Connect - John BradleyCloudIDSummit

This document discusses advanced features of OpenID Connect including: - The use of Authorization Cross-Domain Code (ACDC) and Proof Key for Code Exchange (PKCE) to enable authentication flows for native mobile applications. - How ACDC allows native apps to leverage an enterprise or social identity provider to obtain tokens without embedding credentials in the app. - The concept of a Token Agent that performs authentication on behalf of other native apps to provide single sign-on capabilities.

OAuth2 Authorization Server Under the HoodLohika_Odessa_TechTalks

This document provides a summary of a presentation on OAuth 2 authorization servers. It discusses the authorization code flow, reference tokens vs self-contained tokens, OAuth authorization server endpoints like /authorize and /token, possible errors, OpenID Connect for authentication, single sign-on, and single log out. The presentation aims to explain the key components and logic of an OAuth authorization server.

Into The Box Conference Keynote Day 1 (ITB2025)Ortus Solutions, Corp

I am afraid of no test! The power of BDDOrtus Solutions, Corp

More Related Content

Similar to ITB 2023 - The Many Layers of OAuth - Keith Casey .pdf (20)

De la bonne utilisation de OAuth2 Leonard Moustacchis

Introduction to SAML & OIDCForgeRock Identity Tech Talks

Consideration on Holder-of-Key Bound Token < from Financial-grade API (FAPI) ...Hitachi, Ltd. OSS Solution Center.

Stateless authentication for microservices - Greach 2015Alvaro Sanchez-Mariscal

Open APIs - Risks and Rewards (Øredev 2013)Nordic APIs

Stateless authentication for microservices - GR8Conf 2015Alvaro Sanchez-Mariscal

OAuth FTWChris Messina

How OAuth and portable data can revolutionize your web app - Chris MessinaCarsonified Team

OAuth is an open protocol that allows secure API authorization through a simple authorization method. It replaces the need for usernames and passwords with tokens and signatures. This allows users to control access to their account without having to change their main password. Many companies have adopted OAuth due to its security benefits over traditional passwords. Developers have created OAuth libraries in many programming languages to make implementation easier.

Auth proxy pattern on KubernetesMichał Wcisło

Secure your APIs using OAuth 2 and OpenID ConnectNordic APIs

[WSO2 API Manager Community Call] Mastering JWTs with WSO2 API ManagerWSO2

Comment ça marche: OpenID Connect fournisseur d’identité universel de Google ...Leonard Moustacchis

Distributed Authorization with Open Policy Agent.pdfNordic APIs

Configuring Single Sign-On (SSO) via Identity Management | MuleSoft Mysore Me...MysoreMuleSoftMeetup

apidays Helsinki & North 2023 - API authorization with Open Policy Agent, And...apidays

Deep dive into the Open Banking payments flowsForgeRock Identity Tech Talks

Who’s Knocking? Identity for APIs, Web and MobileNordic APIs

Leveraging open banking specifications for rigorous API security – What’s in...Rogue Wave Software

CIS 2015 Extreme OpenID Connect - John BradleyCloudIDSummit

OAuth2 Authorization Server Under the HoodLohika_Odessa_TechTalks

De la bonne utilisation de OAuth2 Leonard Moustacchis

Introduction to SAML & OIDCForgeRock Identity Tech Talks

Consideration on Holder-of-Key Bound Token < from Financial-grade API (FAPI) ...Hitachi, Ltd. OSS Solution Center.

Stateless authentication for microservices - Greach 2015Alvaro Sanchez-Mariscal

Open APIs - Risks and Rewards (Øredev 2013)Nordic APIs

Stateless authentication for microservices - GR8Conf 2015Alvaro Sanchez-Mariscal

OAuth FTWChris Messina

How OAuth and portable data can revolutionize your web app - Chris MessinaCarsonified Team

Auth proxy pattern on KubernetesMichał Wcisło

Secure your APIs using OAuth 2 and OpenID ConnectNordic APIs

[WSO2 API Manager Community Call] Mastering JWTs with WSO2 API ManagerWSO2

Comment ça marche: OpenID Connect fournisseur d’identité universel de Google ...Leonard Moustacchis

Distributed Authorization with Open Policy Agent.pdfNordic APIs

Configuring Single Sign-On (SSO) via Identity Management | MuleSoft Mysore Me...MysoreMuleSoftMeetup

apidays Helsinki & North 2023 - API authorization with Open Policy Agent, And...apidays

Deep dive into the Open Banking payments flowsForgeRock Identity Tech Talks

Who’s Knocking? Identity for APIs, Web and MobileNordic APIs

Leveraging open banking specifications for rigorous API security – What’s in...Rogue Wave Software

CIS 2015 Extreme OpenID Connect - John BradleyCloudIDSummit

OAuth2 Authorization Server Under the HoodLohika_Odessa_TechTalks

Recently uploaded (20)

Microsoft AI Nonprofit Use Cases and Live Demo_2025.04.30.pdfTechSoup

In this webinar we will dive into the essentials of generative AI, address key AI concerns, and demonstrate how nonprofits can benefit from using Microsoft’s AI assistant, Copilot, to achieve their goals. This event series to help nonprofits obtain Copilot skills is made possible by generous support from Microsoft. What You’ll Learn in Part 2: Explore real-world nonprofit use cases and success stories. Participate in live demonstrations and a hands-on activity to see how you can use Microsoft 365 Copilot in your own work!

Douwan Crack 2025 new verson+ License codeaneelaramzan63

Adobe Master Collection CC Crack Advance Version 2025kashifyounis067

🌍📱👉COPY LINK & PASTE ON GOOGLE http://drfiles.net/ 👈🌍 Adobe Master Collection CC (Creative Cloud) is a comprehensive subscription-based package that bundles virtually all of Adobe's creative software applications. It provides access to a wide range of tools for graphic design, video editing, web development, photography, and more. Essentially, it's a one-stop-shop for creatives needing a broad set of professional tools. Key Features and Benefits: All-in-one access: The Master Collection includes apps like Photoshop, Illustrator, InDesign, Premiere Pro, After Effects, Audition, and many others. Subscription-based: You pay a recurring fee for access to the latest versions of all the software, including new features and updates. Comprehensive suite: It offers tools for a wide variety of creative tasks, from photo editing and illustration to video editing and web development. Cloud integration: Creative Cloud provides cloud storage, asset sharing, and collaboration features. Comparison to CS6: While Adobe Creative Suite 6 (CS6) was a one-time purchase version of the software, Adobe Creative Cloud (CC) is a subscription service. CC offers access to the latest versions, regular updates, and cloud integration, while CS6 is no longer updated. Examples of included software: Adobe Photoshop: For image editing and manipulation. Adobe Illustrator: For vector graphics and illustration. Adobe InDesign: For page layout and desktop publishing. Adobe Premiere Pro: For video editing and post-production. Adobe After Effects: For visual effects and motion graphics. Adobe Audition: For audio editing and mixing.

Why Orangescrum Is a Game Changer for Construction Companies in 2025Orangescrum

Exploring Code Comprehension in Scientific Programming: Preliminary Insight...University of Hawai‘i at Mānoa

This presentation explores code comprehension challenges in scientific programming based on a survey of 57 research scientists. It reveals that 57.9% of scientists have no formal training in writing readable code. Key findings highlight a "documentation paradox" where documentation is both the most common readability practice and the biggest challenge scientists face. The study identifies critical issues with naming conventions and code organization, noting that 100% of scientists agree readable code is essential for reproducible research. The research concludes with four key recommendations: expanding programming education for scientists, conducting targeted research on scientific code quality, developing specialized tools, and establishing clearer documentation guidelines for scientific software. Presented at: The 33rd International Conference on Program Comprehension (ICPC '25) Date of Conference: April 2025 Conference Location: Ottawa, Ontario, Canada Preprint: https://arxiv.org/abs/2501.10037

How to Batch Export Lotus Notes NSF Emails to Outlook PST Easily?steaveroggers

Migrating from Lotus Notes to Outlook can be a complex and time-consuming task, especially when dealing with large volumes of NSF emails. This presentation provides a complete guide on how to batch export Lotus Notes NSF emails to Outlook PST format quickly and securely. It highlights the challenges of manual methods, the benefits of using an automated tool, and introduces eSoftTools NSF to PST Converter Software — a reliable solution designed to handle bulk email migrations efficiently. Learn about the software’s key features, step-by-step export process, system requirements, and how it ensures 100% data accuracy and folder structure preservation during migration. Make your email transition smoother, safer, and faster with the right approach. Read More:- https://www.esofttools.com/nsf-to-pst-converter.html

Interactive odoo dashboards for sales, CRM , Inventory, Invoice, Purchase, Pr...AxisTechnolabs

Interactive Odoo Dashboard for various business needs can provide users with dynamic, visually appealing dashboards tailored to their specific requirements. such a module that could support multiple dashboards for different aspects of a business ✅Visit And Buy Now : https://bit.ly/3VojWza ✅This Interactive Odoo dashboard module allow user to create their own odoo interactive dashboards for various purpose. App download now : Odoo 18 : https://bit.ly/3VojWza Odoo 17 : https://bit.ly/4h9Z47G Odoo 16 : https://bit.ly/3FJTEA4 Odoo 15 : https://bit.ly/3W7tsEB Odoo 14 : https://bit.ly/3BqZDHg Odoo 13 : https://bit.ly/3uNMF2t Try Our website appointment booking odoo app : https://bit.ly/3SvNvgU 👉Want a Demo ?📧 [email protected] ➡️Contact us for Odoo ERP Set up : 091066 49361 👉Explore more apps: https://bit.ly/3oFIOCF 👉Want to know more : 🌐 https://www.axistechnolabs.com/ #odoo #odoo18 #odoo17 #odoo16 #odoo15 #odooapps #dashboards #dashboardsoftware #odooerp #odooimplementation #odoodashboardapp #bestodoodashboard #dashboardapp #odoodashboard #dashboardmodule #interactivedashboard #bestdashboard #dashboard #odootag #odooservices #odoonewfeatures #newappfeatures #odoodashboardapp #dynamicdashboard #odooapp #odooappstore #TopOdooApps #odooapp #odooexperience #odoodevelopment #businessdashboard #allinonedashboard #odooproducts

Proactive Vulnerability Detection in Source Code Using Graph Neural Networks:...Ranjan Baisak

As software complexity grows, traditional static analysis tools struggle to detect vulnerabilities with both precision and context—often triggering high false positive rates and developer fatigue. This article explores how Graph Neural Networks (GNNs), when applied to source code representations like Abstract Syntax Trees (ASTs), Control Flow Graphs (CFGs), and Data Flow Graphs (DFGs), can revolutionize vulnerability detection. We break down how GNNs model code semantics more effectively than flat token sequences, and how techniques like attention mechanisms, hybrid graph construction, and feedback loops significantly reduce false positives. With insights from real-world datasets and recent research, this guide shows how to build more reliable, proactive, and interpretable vulnerability detection systems using GNNs.

Scaling GraphRAG: Efficient Knowledge Retrieval for Enterprise AIdanshalev

If we were building a GenAI stack today, we'd start with one question: Can your retrieval system handle multi-hop logic? Trick question, b/c most can’t. They treat retrieval as nearest-neighbor search. Today, we discussed scaling #GraphRAG at AWS DevOps Day, and the takeaway is clear: VectorRAG is naive, lacks domain awareness, and can’t handle full dataset retrieval. GraphRAG builds a knowledge graph from source documents, allowing for a deeper understanding of the data + higher accuracy.

Pixologic ZBrush Crack Plus Activation Key [Latest 2025] New Versionsaimabibi60507

Copy & Past Link👉👉 https://dr-up-community.info/ Pixologic ZBrush, now developed by Maxon, is a premier digital sculpting and painting software renowned for its ability to create highly detailed 3D models. Utilizing a unique "pixol" technology, ZBrush stores depth, lighting, and material information for each point on the screen, allowing artists to sculpt and paint with remarkable precision .

Not So Common Memory Leaks in Java WebinarTier1 app

This SlideShare presentation is from our May webinar, “Not So Common Memory Leaks & How to Fix Them?”, where we explored lesser-known memory leak patterns in Java applications. Unlike typical leaks, subtle issues such as thread local misuse, inner class references, uncached collections, and misbehaving frameworks often go undetected and gradually degrade performance. This deck provides in-depth insights into identifying these hidden leaks using advanced heap analysis and profiling techniques, along with real-world case studies and practical solutions. Ideal for developers and performance engineers aiming to deepen their understanding of Java memory management and improve application stability.

Kubernetes_101_Zero_to_Platform_Engineer.pptxCloudScouts

Exploring Wayland: A Modern Display Server for the FutureICS

Meet the Agents: How AI Is Learning to Think, Plan, and CollaborateMaxim Salnikov

Download Wondershare Filmora Crack [2025] With Latesttahirabibi60507

Copy & Past Link 👉👉 http://drfiles.net/ Wondershare Filmora is a video editing software and app designed for both beginners and experienced users. It's known for its user-friendly interface, drag-and-drop functionality, and a wide range of tools and features for creating and editing videos. Filmora is available on Windows, macOS, iOS (iPhone/iPad), and Android platforms.

LEARN SEO AND INCREASE YOUR KNOWLDGE IN SOFTWARE INDUSTRYNidaFarooq10

How can one start with crypto wallet development.pptxlaravinson24

Avast Premium Security Crack FREE Latest Version 2025mu394968

🌍📱👉COPY LINK & PASTE ON GOOGLE https://dr-kain-geera.info/👈🌍 Avast Premium Security is a paid subscription service that provides comprehensive online security and privacy protection for multiple devices. It includes features like antivirus, firewall, ransomware protection, and website scanning, all designed to safeguard against a wide range of online threats, according to Avast. Key features of Avast Premium Security: Antivirus: Protects against viruses, malware, and other malicious software, according to Avast. Firewall: Controls network traffic and blocks unauthorized access to your devices, as noted by All About Cookies. Ransomware protection: Helps prevent ransomware attacks, which can encrypt your files and hold them hostage. Website scanning: Checks websites for malicious content before you visit them, according to Avast. Email Guardian: Scans your emails for suspicious attachments and phishing attempts. Multi-device protection: Covers up to 10 devices, including Windows, Mac, Android, and iOS, as stated by 2GO Software. Privacy features: Helps protect your personal data and online privacy. In essence, Avast Premium Security provides a robust suite of tools to keep your devices and online activity safe and secure, according to Avast.

WinRAR Crack for Windows (100% Working 2025)sh607827

Exceptional Behaviors: How Frequently Are They Tested? (AST 2025)Andre Hora

Exceptions allow developers to handle error cases expected to occur infrequently. Ideally, good test suites should test both normal and exceptional behaviors to catch more bugs and avoid regressions. While current research analyzes exceptions that propagate to tests, it does not explore other exceptions that do not reach the tests. In this paper, we provide an empirical study to explore how frequently exceptional behaviors are tested in real-world systems. We consider both exceptions that propagate to tests and the ones that do not reach the tests. For this purpose, we run an instrumented version of test suites, monitor their execution, and collect information about the exceptions raised at runtime. We analyze the test suites of 25 Python systems, covering 5,372 executed methods, 17.9M calls, and 1.4M raised exceptions. We find that 21.4% of the executed methods do raise exceptions at runtime. In methods that raise exceptions, on the median, 1 in 10 calls exercise exceptional behaviors. Close to 80% of the methods that raise exceptions do so infrequently, but about 20% raise exceptions more frequently. Finally, we provide implications for researchers and practitioners. We suggest developing novel tools to support exercising exceptional behaviors and refactoring expensive try/except blocks. We also call attention to the fact that exception-raising behaviors are not necessarily “abnormal” or rare.