Using an mTLS Identity Provider to Achieve Password-less Auth, Device Health Attestation, and Low Earth Orbit

Explore Pinterest's innovative approach to secure authentication in this 20-minute conference talk from BSidesSF 2023. Discover how the company implemented a custom identity provider using mTLS (mutual TLS) to achieve password-less authentication and device health attestation. Learn about the compliance framework developed to evaluate devices, ensuring only managed and compliant devices can access Pinterest's tools through their SSO flow. Gain insights into the technical details of user-facing mTLS implementation and its benefits for enhancing security in corporate environments.

BSidesSF 2023 - Using an mTLS Identity Provider to achieve Password-less auth... (Armen Tashjian)