Authentication security - the quick and easy way! authentication.pdf · Authentication security -...

13
Authentication security - the quick and easy way! Magnus Hagander @magnushagander

Transcript of Authentication security - the quick and easy way! authentication.pdf · Authentication security -...

Page 1: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database

Authentication security- the quick and easy way!

Magnus Hagander@magnushagander

Page 2: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database
Page 3: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database
Page 4: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database
Page 5: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database

#

Page 6: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database

postgres=# CREATE EXTENSION pgcrypto;CREATE EXTENSION

Page 7: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database

postgres=# CREATE EXTENSION pgcrypto;CREATE EXTENSION

postgres=# SELECT crypt('topsecret', gen_salt('bf')); crypt -------------------------------------------------------------- $2a$06$gtwIVMvGNoClLvD4vqVwAus4OF47mLv0J6XyYylzpAKaf.dJm9qFC(1 row)

Page 8: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database
Page 9: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database
Page 10: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database

CREATE OR REPLACE FUNCTION login(_userid text, _pwd text, OUT _email text) RETURNS text LANGUAGE plpgsql SECURITY DEFINERAS $$BEGIN SELECT email INTO _email FROM users WHERE users.userid=lower(_userid) AND pwdhash = crypt(_pwd, users.pwdhash);END;$$

REVOKE ALL ON users FROM public;

Page 11: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database

postgres=# select login('foo', 'bar'); login ------- (1 row)

postgres=# select login('foo', 'topsecret'); login ------------- [email protected](1 row)

postgres=> select * from users;ERROR: permission denied for relation users

Page 12: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database
Page 13: Authentication security - the quick and easy way! authentication.pdf · Authentication security - the quick and easy way! ... Did the latest Sony hack leak my info? ... Gawkers Database

DONE!

http://www.flickr.com/photos/osi/122937793/http://www.flickr.com/photos/litlnemo/5304381201/in/photostream/

http://www.flickr.com/photos/86608983@N00/375048613/in/photostream/


Authentication in Distributed Systemscse.iitkgp.ac.in/~pallab/dist_sys/Lec-13-Authentication.pdf• Authenticated Interactive Communication – Both the parties should involve in the

Authentication in Distributed Systemscse.iitkgp.ac.in/~pallab/dist_sys/Lec-13-Authentication.pdf• Authenticated Interactive Communication – Both the parties should involve in the

AAA Authentication Paperless คือ... · AAA Authentication Authentication คือการยืนยันตัวตน ก็คือการบอกว่า คนทกี่าลงัจะ

AAA Authentication Paperless คือ... · AAA Authentication Authentication คือการยืนยันตัวตน ก็คือการบอกว่า คนทกี่าลงัจะ

SAMS Domestic Quick Tour: Multifactor Authentication from an Android … · 10. Hold the Android’s camera in front of the Enable multi-factor authentication page that is displayed

SAMS Domestic Quick Tour: Multifactor Authentication from an Android … · 10. Hold the Android’s camera in front of the Enable multi-factor authentication page that is displayed

UNIX Authentication and Pluggable-authentication Modules ... · UNIX Authentication and Pluggable-authentication Modules (PAMs) Russell Bateman Description of UNIX authentication,

UNIX Authentication and Pluggable-authentication Modules ... · UNIX Authentication and Pluggable-authentication Modules (PAMs) Russell Bateman Description of UNIX authentication,

RESEARCH ARTICLE Evaluation of Authentication …Authentication Center (AUC): Authentication Center where all authentication algorithms are defined. The Authentication Centre (AUC)

RESEARCH ARTICLE Evaluation of Authentication …Authentication Center (AUC): Authentication Center where all authentication algorithms are defined. The Authentication Centre (AUC)

3 { Authentication and hash functions - Authentication.pdf · Salting: store (id;s;H(s jjpw)) where s is random salt Key stretching: more generally, use a key derivation function

3 { Authentication and hash functions - Authentication.pdf · Salting: store (id;s;H(s jjpw)) where s is random salt Key stretching: more generally, use a key derivation function

RightPlug Product Authentication Strategy R002rightplug.org/whitepapers/RightPlug Product Authentication Strategy... · RightPlug Product Authentication Strategy ... Product authentication

RightPlug Product Authentication Strategy R002rightplug.org/whitepapers/RightPlug Product Authentication Strategy... · RightPlug Product Authentication Strategy ... Product authentication

Comodo One - Service Desk - Quick Start Guide · Comodo One - Service Desk - Quick Start Guide Admins can also setup two-factor authentication of user logins for additional security.

Comodo One - Service Desk - Quick Start Guide · Comodo One - Service Desk - Quick Start Guide Admins can also setup two-factor authentication of user logins for additional security.

Quick User Guide How to set up and use two authentication app - Two Authenticati… · i-rms.online Quick User Guide How to set up and use two authentication app Integrated Relocation

Quick User Guide How to set up and use two authentication app - Two Authenticati… · i-rms.online Quick User Guide How to set up and use two authentication app Integrated Relocation

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Authentication Applications. will consider authentication functions will consider authentication functions developed to support application-level authentication.

Www.nordicedge.com Nordic Edge Nordic Edge Authentication Platform Easy, Quick, Reliable Authentication for Both Local and Cloud Applications © Nordic.

Www.nordicedge.com Nordic Edge Nordic Edge Authentication Platform Easy, Quick, Reliable Authentication for Both Local and Cloud Applications © Nordic.

Authentication. TOPICS Objectives Legacy Authentication Protocols IEEE 802.1X Authentication Extensible Authentication Protocol (EAP) Authentication Servers.

Authentication. TOPICS Objectives Legacy Authentication Protocols IEEE 802.1X Authentication Extensible Authentication Protocol (EAP) Authentication Servers.

TWO-FACTOR AUTHENTICATION PROJECT · two-factor authentication project a quick introduction to 2fa and its use at georgia tech

TWO-FACTOR AUTHENTICATION PROJECT · two-factor authentication project a quick introduction to 2fa and its use at georgia tech

Authentication Without Authentication

Authentication Without Authentication

Authentication without Authentication - Peerlyst meetup

Authentication without Authentication - Peerlyst meetup

Biometric Authentication Biometric … Quick Pulse * Biometric Authentication Biometric Authentication: The Future Is Now I t’s a continuous balancing act: having simple and user-friendly

Biometric Authentication Biometric … Quick Pulse * Biometric Authentication Biometric Authentication: The Future Is Now I t’s a continuous balancing act: having simple and user-friendly

Outline User authentication –Password authentication, salt –Challenge-response authentication protocols –Biometrics –Token-based authentication Authentication.

Outline User authentication –Password authentication, salt –Challenge-response authentication protocols –Biometrics –Token-based authentication Authentication.

AuthentX Visitor PIV Authentication Features Station (VPAS) PIV Authentication.pdf · AuthentX™ Visitor PIV Authentication AuthentXTM OCSP+ AuthentXTM IDMS AuthentX™ IDMS The

AuthentX Visitor PIV Authentication Features Station (VPAS) PIV Authentication.pdf · AuthentX™ Visitor PIV Authentication AuthentXTM OCSP+ AuthentXTM IDMS AuthentX™ IDMS The

Authentication User Authentication - Cypherpunks

Authentication User Authentication - Cypherpunks

Kerberos Authentication.pdf

Kerberos Authentication.pdf