Overview
Syllabus
Intro
black hat USA 2021
SunBurst: Breach of the year
SunBurst APT
Persistence: APT VS. APT
Persistence in practice
What is SAML
Service Provider (SP)
Identity Provider (IP)
SAML token example
Back to Service Provider
SAML is all about decoupling
Golden SAML: In high level
Problem definition
MFA as a good solution reference
Hardware based solution
HSM for SAML: Scorecard
What if we can have multiple signers?
Threshold Signature Scheme (TSS)
Tribute to Dan Kaminsky
EC-DLP as a billiards game
Distributed EC-DLP: Doubles' billiards game
Threshold Signatures (TSS): 1 becomes 2
TSS SAML flow: In high level
TSS for SAML: Scorecard
Demo Architecture - Setup Phase
Demo Architecture - Signing Phase
Taught by
Black Hat