Taking the Pain Out of Passwords and Authentication

Taking the Pain Out of Passwords and Authentication

EuroPython Conference via YouTube Direct link

Registering: server Server generates a challenge

9 of 16

9 of 16

Registering: server Server generates a challenge

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Taking the Pain Out of Passwords and Authentication

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 Servers suck at passwords Your password must satisfy the following rules
  3. 3 Passwords are the least worst Passwords
  4. 4 Mitigations: Password permute Passwords that you characters are easier to type on mobile
  5. 5 Encourage strong passwords Provide strength feedback as the user types
  6. 6 Allow users to see their password
  7. 7 fido
  8. 8 UAF - Universal Authentication Framework
  9. 9 Registering: server Server generates a challenge
  10. 10 Registering browser Javascript relays the challenge to the device
  11. 11 Registering: browser Javascript relays the challenge to the device
  12. 12 Registration: server Verify the response against the challenge
  13. 13 Authentication server Verify the password, then generate a challenge
  14. 14 Authentication: browser Javascript sends the challenge to the device
  15. 15 Authentication: verify the response
  16. 16 More info

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.