Hacking JSON Web Tokens (JWTs)

And how attackers forge tokens and log in as someone else

Vickie Li
Vickie Li
Oct 27, 2019 · 7 min read

JSON web tokens are a type of access tokens that are widely used in commercial applications. They are based on the JSON format and includes a token signature to ensure the integrity of the token.

Today, we are going to talk about the security implications of using JSON web tokens (and…