OAuth flows, mTLS, token design, zero-trust patterns, and securing APIs in regulated financial environments — the layered defence that satisfies regulators without sacrificing latency.
OAuth 2.1 flows, OpenID Connect, mutual TLS, JWT validation, the FAPI 2.0 profile, sender-constrained tokens, and the layered defence that secures regulated financial APIs.
CIBA, dynamic client registration, consent revocation, and the operational mechanics of TPP onboarding under PSD2 / Open Banking standards.
Istio & Linkerd patterns for east-west mTLS, certificate rotation, identity propagation, and zero-trust microservices.