Insecurity Protocols - An Overview of Modern Authentication

Dive into a comprehensive exploration of modern authentication protocols in this 30-minute conference talk from Security BSides San Francisco. Gain insights into the strengths and weaknesses of various security mechanisms, including OpenID Connect, SAML, WebAuthn, TPMs, and TLS. Discover why some security engineers criticize JWTs and compare them to the complexities of XML Digital Signatures. Learn about the potential vulnerabilities and real-world CVEs that can arise from complex protocols. Whether you're a seasoned security professional or new to the field, this talk offers valuable knowledge on the current state of authentication methods and their implications for cybersecurity.