You Shall Not Password - Modern Authentication for Web Apps

Explore modern authentication mechanisms for web applications in this conference talk from NDC London 2022. Delve into the evolution of user authentication, from traditional username and password methods to the complex landscape of SSO, 2FA, OAuth, OIDC, SAML, FIDO2, and OTP. Gain insights into the significance of central authentication and understand the true protective capabilities of two-factor authentication, as well as its limitations. Discover how to enhance user safety by examining the advantages, disadvantages, and potential pitfalls of contemporary web authentication techniques. Suitable for web developers with basic knowledge and those interested in security, this talk also illuminates the inner workings of popular sign-in methods like 'Sign in with Google'.

You Shall Not Password: Modern Authentication for Web Apps - Eli Holderness - NDC London 2022