Articles
I’ve written several technical articles since 1997 for various blogs, websites, and magazines, both in English and in Italian. Here you can find a list of the most recent ones:
Pushed Authorization Requests in .NET 9: Why and How to Use Them
If you are wondering what Pushed Authorization Requests are, why you should use this feature, and how to use it in your .NET applications, this article is for you.
2025-01-15 
Bring Your Own Key (BYOK) in Auth0
Take control of your encryption keys using the BYOK security model in your Auth0 tenant.
2024-12-11
Authentication and Authorization Enhancements in .NET 9.0
With .NET 9.0, some interesting authentication and authorization features have been added to the platform. Let’s take an overview of them.
2024-11-12
What Are OAuth Pushed Authorization Requests (PAR)?
Learn what Pushed Authorization Requests are and when to use them to strengthen the security of your OAuth 2.0 and OpenID Connect-based applications.
2024-11-08
ASP.NET Core Authentication Behind Proxies
Learn how to overcome ASP.NET Core authentication configuration issues when your application is behind a proxy, load balancer, gateway, container, or similar system.
2024-10-24
Is This Intelligence?
Is artificial intelligence truly intelligent or is it nothing more than a trained machine?
2024-10-20
The Curious 'Case' of the Bearer Scheme
A wrong interpretation of the OAuth specifications can lead to hours of debugging and headaches. Learn the details to avoid them.
2024-09-30
Identity Challenges for AI-Powered Applications
What are the Identity security challenges that developers of AI-based applications must be aware of? Let’s explore some of them.
2024-08-28
Use Private Key JWTs to Authenticate Your .NET Application
Add Private Key JWT authentication to your .NET application to empower security in sensitive contexts.
2024-07-17