@techreport{leiba-oauth-additionalsecurityconsiderations-00,
    number =    {draft-leiba-oauth-additionalsecurityconsiderations-00},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-leiba-oauth-additionalsecurityconsiderations/00/},
        author =    {Barry Leiba},
    title =     {{OAuth Additional Security Considerations}},
    pagetotal = 10,
    year =      2011,
    month =     mar,
    day =       28,
    abstract =  {The Open Authentication Protocol (OAuth) specifies a security protocol that involves significant end-user interaction -- the model is based on having the end-user approve the authorization that is being requested. That aspect makes the user interaction a part of the security model, and raises additional security considerations beyond those that are typical for client/server protocols. This document describes those considerations.},
}