Securing Online Identities with Simple, Secure, Open Standards

Explore the evolution of online identity security in this conference talk from BSidesSF 2019. Learn how the development of simple, secure, and open standards is revolutionizing authentication methods. Discover the parallels between Volvo's three-point seatbelt and the future of strong online identities, emphasizing the importance of user-friendly security measures. Gain insights into the open authentication standard U2F (Universal 2nd Factor) and its successor, FIDO2, which aim to eliminate the need for usernames and complex passwords. Understand the advantages of these new standards compared to traditional methods like one-time passwords and smart cards. Examine real-world implementations, including Google's successful deployment of U2F devices and Microsoft's incorporation of FIDO2 for passwordless login. Delve into the broader implications for the identity ecosystem and the coexistence of various authentication technologies in the future.