Glossary

JWT (JSON Web Token)

An open standard for securely transmitting information between two parties as a signed JSON token. JWTs are widely used for authentication and authorization in APIs and SPAs. Common mistakes include missing signature verification, the none algorithm vulnerability, and weak signing secrets.

Related Pages

authentication jwt oauth sessions flawshmac

Other Terms

2FA/MFA (Multi-Factor Authentication)

AES (Advanced Encryption Standard)

AI Agent

ANSSI (French National Cybersecurity Agency)

Back to glossary

Need an external review of your HR SaaS?

Share your product, stack, and client context. We will come back with the right review scope.

Discuss your audit