Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Hackference India 2018 | Modern Identity

Mehul Patel
December 15, 2018
Technology
0
99

Hackference India 2018 | Modern Identity

Modern identity is a lot more than just the login screen. In this talk, the audience learned about the different concepts that make up a modern identity.

Google slides: https://bit.ly/2UNyyag
Link of conference: https://hackference.in/about
Repo: https://github.com/rowdymehul/Hackference-India-2018

Mehul Patel

December 15, 2018
Tweet

More Decks by Mehul Patel

See All by Mehul Patel
Git-crypt: A tool to Secure your Secrets
rowdymehul
0
210
First look - Containers & Docker
rowdymehul
0
80
Web Security with Auth0
rowdymehul
0
120
Rust Techie-talks at gnuNify 2018
rowdymehul
2
630
Know your Identity with Auth0
rowdymehul
1
90
Why is Privacy Important?
rowdymehul
0
110
Let's play with Rust - BITS Pilani, Goa
rowdymehul
1
160
Let's play with Rust - GIRLSCRIPT SUMMIT 2017
rowdymehul
2
400
Linux is my bae! Best to Learn & Grow.
rowdymehul
0
50

Other Decks in Technology

See All in Technology
ノーコードデータ分析ツールで体験する時系列データ分析超入門
negi111111
0
410
飲食店データの分析事例とそれを支えるデータ基盤
kimujun
0
110
AGIについてChatGPTに聞いてみた
blueb
0
130
データプロダクトの定義からはじめる、データコントラクト駆動なデータ基盤
chanyou0311
2
320
New Relicを活用したSREの最初のステップ / NRUG OKINAWA VOL.3
isaoshimizu
2
610
Adopting Jetpack Compose in Your Existing Project - GDG DevFest Bangkok 2024
akexorcist
0
110
OS 標準のデザインシステムを超えて - より柔軟な Flutter テーマ管理 | FlutterKaigi 2024
ronnnnn
0
150
AIチャットボット開発への生成AI活用
ryomrt
0
170
オープンソースAIとは何か? --「オープンソースAIの定義 v1.0」詳細解説
shujisado
9
1k
これまでの計測・開発・デプロイ方法全部見せます! / Findy ISUCON 2024-11-14
tohutohu
3
370
20241120_JAWS_東京_ランチタイムLT#17_AWS認定全冠の先へ
tsumita
2
280
TypeScript、上達の瞬間
sadnessojisan
46
13k

Featured

See All Featured
VelocityConf: Rendering Performance Case Studies
addyosmani
325
24k
Designing on Purpose - Digital PM Summit 2013
jponch
115
7k
No one is an island. Learnings from fostering a developers community.
thoeni
19
3k
Into the Great Unknown - MozCon
thekraken
32
1.5k
5 minutes of I Can Smell Your CMS
philhawksworth
202
19k
Art, The Web, and Tiny UX
lynnandtonic
297
20k
Stop Working from a Prison Cell
hatefulcrawdad
267
20k
Building Applications with DynamoDB
mza
90
6.1k
Producing Creativity
orderedlist
PRO
341
39k
[RailsConf 2023] Rails as a piece of cake
palkan
52
4.9k
The Power of CSS Pseudo Elements
geoffreycrofte
73
5.3k
How GitHub (no longer) Works
holman
310
140k

Transcript

  1. By Mehul Patel, @rowdymehul Modern Identity Inspired by : @KukicAdo

  2. Mehul Patel Engineer at Zimbra Mentor at Mozilla Reps Auth0

    Ambassador, Auth0 Inc Rust Mobilizer Co-founder of IDF Twitter : @rowdymehul [email protected] About Me

  3. • Exposing Sensitive Data • Broken Authentication • Security Misconfiguration

    • Injection Vulnerability Common Web Security Vulnerabilities

  4. What is Identity ?

  5. What is Identity ? Authentication of an individual

  6. What is Modern Identity ? • Authentication - The way

    you login • Authorization - Right access to Right People at Right Time • Security - Protecting data in motion and at rest • Personalization - Tailored user experience

  7. Authentication ➔ Traditional Username and Password ➔ Social login via

    Facebook,Twitter, Google , etc. ➔ Enterprise Federation and Single Sign On ➔ Passwordless

  8. Traditional Username and Password • Most Common • Easy to

    Implement • Least Secure

  9. Social Login • Common • Medium Difficulty • More secure

  10. Single Sign On • Most Common in Enterprise • Difficult

    to Implement • Solve Authorization use cases

  11. Passwordless • Rare / Upcoming • Easy to Implement •

    Very secure

  12. Authorization ➔ Ensure the user has the right access at

    the right time ➔ Grant, Change and Revoke access

  13. Security Biggest concern for our valuable data

  14. Password • Complexity • Storage • Security

  15. Multi Factor Authentication • Something you know, Something you have

    , Something you are Brute Force Protection • Prevent repeated failed login attempts • Alert user and validate identity Anomaly Detection • Proactively protect users • Alert user of suspicious activity • Breached password detection

  16. Personalization ➔ Give a personal touch to each user ➔

    Make Data work for you ➔ Enhanced Analytics

  17. Auth0 Identity as a Service • Modern Identity in 10

    minutes • Free Tier ( 7000 Monthly Active users ) • Team of Security Expert

  18. Visit auth0.com

  19. None
  20. None
  21. None
  22. None
  23. None

  24. Explore... auth0.com/docs

  25. Questions ? Available on GitHub, Telegram & Twitter : @rowdymehul

  26. None