OAuth is an open standard for authorization that provides a method for clients to access server resources on behalf of a resource owner. It also provides a process for users to authorize third-party access to their server resources without sharing their credentials, by using user-agent redirections.
In this demonstration video, IBM security architect Shane Weeden demonstrates a security identity and access management pattern for hybrid mobile applications using OAuth to manage registration and risk-based access policy for context-aware, step-up authentication. Weeden describes using OAuth to register for a demo (the security token is provided as a Quick Response code square and is scanned by the system and converted into the text code). He then launches the demo.