How FIDO2 and WebAuthn Stop Account Takeovers
Offered By: RSA Conference via YouTube
Course Description
Overview
Explore the world of advanced user authentication in this 44-minute RSA Conference talk. Learn how FIDO2 and WebAuthn technologies effectively combat account takeovers and provide stronger security than traditional methods. Discover the limitations of password-based systems and user education, and understand the evolution from U2F to WebAuthn. Gain insights into implementing these protocols for personal protection and integrating them into your own systems. Delve into the registration and authentication processes, client libraries, and best practices for making informed security decisions. Suitable for those with a basic understanding of password-based authentication and public key cryptography.
Syllabus
Intro
Meta slide - Me
Login & Password
Threat - Guessed password
Password reuse
Threat - Credential stuffing
One time passwords
The fundamental issue...
FIDO2
Registration dance
Authentication dance
Client Library
Painful realities
Make good choices
Taught by
RSA Conference
Related Courses
Web SecurityStanford University via YouTube Navigating Passwordless Authentication with FIDO2 & WebAuthn
Security BSides San Francisco via YouTube WebAuthn 101 - Demystifying WebAuthn
Black Hat via YouTube Why FIDO Security Keys & Webauthn Are Awesome
NDC Conferences via YouTube Deploying WebAuthn at Dropbox Scale - Second Factor and Beyond
BSidesLV via YouTube