| |||||
| |||||
Search Irongeek.com:
Help Irongeek.com pay for bandwidth and research equipment: |
Passwords have been used to secure user sessions in computing since the time sharing era. Cryptography, collaborative standards development, and persistent network connectivity have led to new options for authenticators, while determined attackers and ever-expanding computing power have minimized a password’s security value. Recently, NIST engaged with the identity community to substantially revise guidance around digital identities, authenticators, and federation security. This session will explore authenticators from passwords to the latest FIDO 2 standards, focusing on how to improve security while not negatively impacting user experience. Additionally, we examine authentication protocols that can be used in combination with proposed authenticators to secure application sessions. Finally, an action plan is presented that will assist in determining weak authentication methods and provide a path toward adopting more secure authenticators. Alex B Chalmers is a technical service manager for federated identity solutions at Eli Lilly and Company. He has served in a variety of senior technical roles across identity, security, and enterprise technology architecture over more than 15 years. Currently, his focus is the continuous improvement of cloud identity solutions and the broad adoption of strong authentication technologies. In addition to his technical roles, Alex has served as a university instructor in information security and provided technical training in a variety of cloud technology solutions.
15 most recent posts on Irongeek.com:
|
If you would like to republish one of the articles from this site on your
webpage or print journal please contact IronGeek.
Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast