Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Cooking with Credentials

Eric Mann
January 14, 2021
Technology
0
51

Cooking with Credentials

There are many different ways to authenticate users to your application in PHP land. This talk will take a deep look into at least three different patterns for user authentication to keep your system secure. Everything we’ll be doing is password-focused, moving from the simplest methods to the most complex. We will only discuss actually-secure PHP authentication, but presenting multiple approaches will give you and your team superb flexibility when you move from theory to implementation.

Eric Mann

January 14, 2021
Tweet

More Decks by Eric Mann

See All by Eric Mann
Evolution of PHP Security
ericmann
0
52
PHP, Meet AI
ericmann
0
54
Asynchronous Awesome
ericmann
0
140
WordPress, Meet AI
ericmann
0
37
OWASP Top Ten in Review
ericmann
0
38
Monkeys in the Machine
ericmann
0
190
Asynchronous Awesome
ericmann
0
300
Evolution of PHP Security
ericmann
0
350
Web Application Security Update: Top Vulnerabilities
ericmann
0
160

Other Decks in Technology

See All in Technology
От ручной разметки к LLM: как мы создавали облако тегов в Lamoda. Анастасия Ангелова, Data Scientist, Lamoda Tech
lamodatech
0
710
Porting PicoRuby to Another Microcontroller: ESP32
yuuu
3
400
20250413_湘南kaggler会_音声認識で使うのってメルス・・・なんだっけ?
sugupoko
1
470
Ops-JAWS_Organizations小ネタ3選.pdf
chunkof
2
150
AIで進化するソフトウェアテスト:mablの最新生成AI機能でQAを加速!
mfunaki
0
140
プロダクト開発におけるAI時代の開発生産性
shnjtk
2
230
AWS Control Towerを 数年運用してきての気づきとこれから/aws-controltower-ops-tips
tadayukinakamura
0
130
4/17/25 - CIJUG - Java Meets AI: Build LLM-Powered Apps with LangChain4j (part 2)
edeandrea
PRO
0
100
LLM as プロダクト開発のパワードスーツ
layerx
PRO
1
240
SnowflakeとDatabricks両方でRAGを構築してみた
kameitomohiro
1
230
The Tale of Leo: Brave Lion and Curious Little Bug
canalun
1
120
ワールドカフェI /チューターを改良する / World Café I and Improving the Tutors
ks91
PRO
0
110

Featured

See All Featured
Intergalactic Javascript Robots from Outer Space
tanoku
270
27k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
104
19k
Navigating Team Friction
lara
184
15k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
32
5.4k
Bash Introduction
62gerente
611
210k
Facilitating Awesome Meetings
lara
54
6.3k
Art, The Web, and Tiny UX
lynnandtonic
298
20k
ピンチをチャンスに:未来をつくるプロダクトロードマップ #pmconf2020
aki_iinuma
119
51k
Performance Is Good for Brains [We Love Speed 2024]
tammyeverts
9
750
Build The Right Thing And Hit Your Dates
maggiecrowley
35
2.6k
BBQ
matthewcrist
88
9.6k
Into the Great Unknown - MozCon
thekraken
37
1.7k

Transcript

  1. 1

  2. 2 Hello. Eric Mann Director of Engineering, Vacasa

  3. 3

  4. 4 What is a password? Basic authentication flows Cooking with

    salt Cooking with pepper Socially distant passwords Further resources and study

  5. 5 Something you know that is information kept secret from

    others but which can be used to authenticate your identity to a system requiring identity verification and security.

  6. 6 1 First, you identify yourself to the system. This

    could be by username, email address, account ID, or some other means agreed-upon with the system. 2 Next, you have to prove you are who you say you are by confirming some pre-shared, secret detail with the system. 3 If everything lines up, you’re authenticated and logged in!

  7. 7

  8. 8 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non.
  9. None

  10. 10

  11. 11 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. To prevent rainbow table lookup attacks, it’s best to add a unique, random salt to each password during hashing. This dramatically slows brute force attacks and further protects your users.

  12. 12 $hash = password_hash(/** ... **/, PASSWORD_DEFAULT); /** ... **/

    if (password_verify(/** ... **/, $hash) { // ... }

  13. 13

  14. 14 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. Even with salting, you still send the plaintext of a password over the wire to the server. If the server is misconfigured or too chatty in the logs, this plaintext could be inadvertently leaked. const pepper = new TextEncoder().encode('...'); async function getKeyMaterial(password) { let encoder = new TextEncoder(); return window.crypto.subtle.importKey( 'raw', encoder.encode(password), 'PBKDF2', false, ['deriveBits'] ); }

  15. 15 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. async function pepperPassword(password) { let keyMaterial = await getKeyMaterial(password); let keyBuffer = await window.crypto.subtle.deriveBits( { 'name': 'PBKDF2', 'salt': pepper, 'iterations': 100000, 'hash': 'SHA-256' }, keyMaterial, 256 ); let keyArray = Array.from(new Uint8Array(keyBuffer)); return keyArray.map(b => b.toString(16).padStart(2, '0')).join(''); }

  16. 16 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non. peppered = await pepperPassword('...');

  17. 17

  18. 18 Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce

    elit ex, consequat et tincidunt non, pharetra non. Lorem ipsum dolor sit amet, consectetur adipiscing elit. Fusce elit ex, consequat et tincidunt non, pharetra non.

  19. 19 $salt = random_bytes(SODIUM_CRYPTO_PWHASH_SALTBYTES); $seed = sodium_crypto_pwhash(/* ... */); $keypair

    = sodium_crypto_kx_seed_keypair($seed); $public_key = sodium_crypto_kx_publickey($keypair); // POST this data to the server to register $registration = [ 'identifier' => $email, 'salt' => sodium_bin2hex($salt), 'public_key' => sodium_bin2hex($public_key) ];

  20. 20 $user = get_user_from_database($email); $keypair = sodium_crypto_kx_keypair(); $public_key = sodium_crypto_kx_publickey($keypair);

    $keys = sodium_crypto_kx_server_session_keys($keypair, $user->key); $client_secret = $keys[1]; $server_secret = $keys[0]; $message = random_bytes(32); $hash = sodium_crypto_generichash($message, $server_secret); $proof = sodium_bin2hex($message . $hash);

  21. 21 $keys = sodium_crypto_kx_server_session_keys($keypair, $server_key); $client_secret = $keys[0]; $server_secret =

    $keys[1]; $server_proof = sodium_hex2bin($server_proof); $message = substr($server_proof, 0, 32); $hash = substr($server_proof, 32); if (!hash_equals( sodium_crypto_generichash($message, $server_secret), $hash )) { exit; }

  22. 22 $keys = sodium_crypto_kx_server_session_keys($keypair, $server_key); $client_secret = $keys[0]; $server_secret =

    $keys[1]; /* ... */ $message = random_bytes(32); $hash = sodium_crypto_generichash($message, $client_secret); $proof = sodium_bin2hex($message . $hash);

  23. 23 $client_proof = sodium_hex2bin($proof); $message = substr($client_proof, 0, 32); $hash

    = substr($client_proof, 32); if (!hash_equals( sodium_crypto_generichash($message, $client_secret), $hash )) { exit; } // Store the user's email in a session for subsequent requests $_SESSION['identifier'] = $email;

  24. 24

  25. 25

  26. 26

  27. 27

  28. 28