Explore the complex world of password security in this 32-minute conference talk from BSidesLV 2016. Delve into the challenges and controversies surrounding password management, examining topics such as "remember me" boxes, password policies, and user education failures. Investigate alternative authentication methods, including VASCO tokens, biometrics, and rules-based authentication. Gain insights into user preferences and emerging technologies like fitness trackers and cryptocurrency. Learn about innovative approaches to strengthen security without compromising user experience, and understand the importance of robust testing in authentication systems.
Overview
Syllabus
Intro
The mess weve made
Remember me boxes
Password policies
Failed user education
Password managers
What users want
VASCO tokens
Bluetooth
USB
Fitness trackers
Gatekeeper
Passcode
Bikies
Crypto
RFID
Scanners
Tasker
Fingerprint Scanner
Camera
I pass pictures
Dont ask for passwords
Start strong
Testing
Rulesbased authentication
Taught by
BSidesLV
