Explore authentication methods for encrypted services with server-side APT in this 21-minute conference talk from BSidesLV 2015. Delve into key exchange processes, master key concepts, and password management techniques. Learn about implementing two-factor authentication, handling multiple counters, and supporting multi-token systems. Discover the intricacies of SSL keys and examine hardware implementations using Teensy and Raspberry Pi. Investigate compute power requirements, EBCO, and Firefox integration. Gain insights into advanced security measures for protecting encrypted services through this comprehensive presentation.
Overview
Syllabus
Intro
Key Exchange
Master Key
Better Master Key
Changing Passwords
New Users
Two Factor Authentication
Multiple Counters
MultiToken Support
SSL Key
Teensy Gap
Raspberry Pi
Ghetto Whale
Questions
Compute Power Requirements
EBCO
Firefox
