SecAppDev 2019 has ended
Back To Schedule
Tuesday, February 19 • 14:00 - 15:30
Authentication beyond passwords

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Passwords alone are limited in the security they can provide. Wider deployment of effective multi-factor authentication is needed to improve security in the presence of higher-risk applications and more advanced threats.

In today's web, it is fair to say that threats against authentication are worse than ever before. We urgently need to increase the security of our applications by deploying multi-factor authentication. However, there is a myriad of different mechanisms. Some of these provide little more than a false sense of security. Others, in turn, provide excellent protection against a comprehensive range of threats. How can you tell these mechanisms apart? And which one is right for your application?

In this session, we discuss a variety of ways to tackle authentication. For each mechanism, we dive into the threats it can and cannot address. By tying these mechanisms together, we show how to build a comprehensive authentication solution. Additionally, we discuss account recovery and biometric authentication methods.

This session is intended for anyone designing or implementing authentication for moderate- and high-risk applications.


Jim Fenton

Internet Technologist, Altmode Networks

Tuesday February 19, 2019 14:00 - 15:30 CET
West wing (room Lemaître)