Completed
Authentication: browser Javascript sends the challenge to the device
Class Central Classrooms beta
YouTube videos curated by Class Central.
Classroom Contents
Taking the Pain Out of Passwords and Authentication
Automatically move to the next video in the Classroom when playback concludes
- 1 Intro
- 2 Servers suck at passwords Your password must satisfy the following rules
- 3 Passwords are the least worst Passwords
- 4 Mitigations: Password permute Passwords that you characters are easier to type on mobile
- 5 Encourage strong passwords Provide strength feedback as the user types
- 6 Allow users to see their password
- 7 fido
- 8 UAF - Universal Authentication Framework
- 9 Registering: server Server generates a challenge
- 10 Registering browser Javascript relays the challenge to the device
- 11 Registering: browser Javascript relays the challenge to the device
- 12 Registration: server Verify the response against the challenge
- 13 Authentication server Verify the password, then generate a challenge
- 14 Authentication: browser Javascript sends the challenge to the device
- 15 Authentication: verify the response
- 16 More info