Hawk is a MAC-based HTTP authentication scheme that provides partial cryptographic verification of HTTP messages. Hawk requires a symmetric key to be shared between the client and the server out-of-band. For more info, see here.
Hawk 101
The client sends an HTTP request, like so.
The server returns a challenge, like so.
View original post 740 more words
leastprivilege.com 
Reblogged this on brockallen and commented:
It’s awesome that we now have Hawk support in Thinktecture IdentityModel!