You Shall Not Password - Modern Authentication for Web Apps

Explore modern authentication mechanisms for web applications in this conference talk from NDC Sydney 2022. Delve into the evolution of user authentication, from traditional username and password methods to the complex landscape of SSO, 2FA, OAuth, OIDC, SAML, FIDO2, and OTP. Gain insights into the significance of central authentication and understand the true protective capabilities of two-factor authentication, as well as its limitations. Discover how to enhance user safety by examining the advantages, disadvantages, and potential pitfalls of contemporary web authentication techniques. Suitable for web developers with basic knowledge and those interested in security, this talk also illuminates the inner workings of popular "sign in with" services. Presented by Eli Holderness, this 51-minute session offers valuable knowledge for anyone seeking to improve their understanding of modern web security practices.