Get Your Insecure PostgreSQL Passwords to SCRAM - Secure Authentication Methods

Get Your Insecure PostgreSQL Passwords to SCRAM - Secure Authentication Methods

Confreaks via YouTube Direct link

Intro

1 of 28

1 of 28

Intro

Class Central Classrooms beta

YouTube videos curated by Class Central.

Classroom Contents

Get Your Insecure PostgreSQL Passwords to SCRAM - Secure Authentication Methods

Automatically move to the next video in the Classroom when playback concludes

  1. 1 Intro
  2. 2 aka "A Tale of Two Hippos"
  3. 3 Guest Starring Blue Elephant
  4. 4 How Do Passwords Work in PostgreSQL?
  5. 5 PostgreSQL Plaintext Passwords
  6. 6 Plaintext Password Authentication Flow
  7. 7 Transport Layer Security
  8. 8 PostgreSQL MD5 Password Authentication
  9. 9 MD5 Authentication Flow
  10. 10 Salted Challenge Response Authentication Mechanism
  11. 11 Creating a Password For SCRAM
  12. 12 Building a SCRAM Secret - DIGEST
  13. 13 Building a SCRAM Secret - ITERATIONS
  14. 14 Building a SCRAM Secret - SASLPrep the Password
  15. 15 Building a SCRAM Secret - Generate the Salted Password
  16. 16 Building a SCRAM Secret - SERVER KEY
  17. 17 Building a SCRAM Secret - "Easy Button"
  18. 18 SCRAM Authentication Flow: Generating Proof
  19. 19 Recall: Client Key
  20. 20 Client Signature
  21. 21 SCRAM Authentication Flow: Server Verification
  22. 22 Server Signature
  23. 23 SCRAM Authentication Flow: Client Verification
  24. 24 Case #1: Server "Claims" To Know Secret
  25. 25 Case #2: Elephant-in-the-Middle Attack
  26. 26 Channel Binding
  27. 27 Upgrading to SCRAM
  28. 28 Driver Support for SCRAM

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.