Name: 🎬 Insecurity protocols: an overview of modern authentication
Start: 2024-05-04T15:30:00-0700
End: 2024-05-04T16:00:00-0700

🎬 Insecurity protocols: an overview of modern authentication

Security engineers that think JWTs are bad have never stared into the abyss of XML Digital Signatures. Come on a journey of modern auth protocols such as OpenID Connect, SAML, WebAuthn, TPMs, and TLS. What makes them good, when they go bad, and when complex protocols result in real CVEs.

Speakers

Eric Chiang

Google

Eric is a Senior Software Engineer in Google’s Security org, where he leads management of Google’s internal network ACLs. He’s previously worked on a range of topics, including Linux fleet security, device hardware attestation, and Kubernetes auth. Eric is a Bay Area native... Read More →

Saturday May 4, 2024 3:30pm - 4:00pm PDT
AMC Theatre 13

Protective & Corrective Security Controls Presentation

BSidesSF 2024

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Eric Chiang