Explore strong authentication methods and their importance in cybersecurity through this AppSec California 2016 conference talk. Learn about the limitations of static passwords, the benefits of one-time passwords (OTP), and various OTP generation methods. Discover the Initiative for Open Authentication (OATH) and its role in developing open-source authentication algorithms. Understand the cost challenges associated with implementing strong authentication and how open-source solutions can make it more accessible to organizations of all sizes. Delve into topics such as credential provisioning, certification programs, and integration architectures. Examine emerging trends in authentication, including adaptive authentication and behavioral biometrics. Gain insights into why certain security technologies fail and how the landscape of authentication is evolving to meet modern challenges.
Open Source Authentication: Security Without High Cost
Overview
Syllabus
Intro
Why strong authentication
Companies in common
RSA hack
Market size
Breach statistics
Online fraud
Hackers everywhere
Breaches
Trends
Why now
Authentication methods
Issues faced by IT managers
What is Oath
Members of Oath
Algorithms
Roadmap
Certification Program
Review
Framework
Oath
Credential provisioning
Objectives
Certification
Typical Scenario
Framework Overview
Why OTP is still expensive
Why OTP should be a commodity
Lin OTP
Lin schematic
Authentication integration architecture
Thirdparty authentication
Adaptive Authentication
Biometrics
Behavioral Advantage
Security Technologies Fail
Behavioral Biometrics
We are changing
Is it creepy
Taught by
OWASP Foundation
