OAuth, WebAuthn, and the Impact of Design Choices - Dan Moore - ASW #260 | allinfosecnews.com

Oct. 24, 2023, 5:14 p.m. | Security Weekly

Security Weekly www.youtube.com

We return to discussions of OAuth and all sorts of authentication. This time around we're looking at the design of authentication protocols, the kinds of trade-offs they weigh for adoption and security, and how a standard evolves over time to keep pace with new attacks and put to rest old mistakes.

Segment Resources:

- https://fusionauth.io/docs/v1/tech/core-concepts/modes
- https://webauthn.wtf/
- https://datatracker.ietf.org/doc/html/rfc7636
- https://www.ietf.org/about/participate/tao/

Visit https://www.securityweekly.com/asw for all the latest episodes!

Show Notes: https://securityweekly.com/asw-260

adoption attacks authentication authentication protocols dan design discussions impact moore oauth protocols return security standard trade webauthn

More from www.youtube.com / Security Weekly

AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN … 1 day, 11 hours ago | www.youtube.com

chrome fcc ftc josh +8

Random Problems, Protecting Packages, and Vulns in Designs, Defaults & Data Leaks - ASW #283 1 day, 13 hours ago | www.youtube.com

code data data leaks leaks +11

Why Companies Continue to Struggle with Supply Chain Security - Melinda Marks - ASW #283 1 day, 13 hours ago | www.youtube.com

address chaos companies continue +15

Air Gapped! The Myth of Securing OT - Thomas Johnson - CSP #172 1 day, 15 hours ago | www.youtube.com

air companies controls csp +11

Meet Silver SAML: Golden SAML in the Cloud - Eric Woodruff - BSW #348 2 days, 7 hours ago | www.youtube.com

access applications attackers attacks +22

Board's Pivotal Role in Cybersecurity as CISO-CEO Communication Gaps Continue - BSW #348 2 days, 8 hours ago | www.youtube.com

board ceo ciso communication +7

TikTok, Flowmon, Cisco, Brokewell, RuggedCom, Deepfakes, Non-Competes, Aaran Leyland - SWN #381 3 days, 13 hours ago | www.youtube.com

cisco deepfakes door flowmon +6

What We Don’t Know Will Hurt Us - Cheryl Biswas - BTS #26 5 days, 11 hours ago | www.youtube.com

attack attack surface biswas can +15

Supply Chain Threats and Regulations - BTS #25 5 days, 11 hours ago | www.youtube.com

blog current eclypsium firewall +17

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland

View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France

View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States

View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India

View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC

View on infosec-jobs.com