Leveraging Users' Engagement to Improve Account Security
Date: January 2019
Publication: AppSec California 2019
Source: Currently no known Internet copy of paper.
Abstract or Summary:
In this day and age, where companies disclose security breaches almost daily, protecting users data can become a daunting task. Users tend to use the same credentials across different applications and platforms. A third party data breach can end up affecting some of your own users. In this session, we will explore the different techniques we use to make data from these breaches yet another tool in our account security toolset. As prevention is never 100%, we take a defense in depth approach when it comes to securing users accounts.
We will go over:
(i) how we use this data to prevent users using weak passwords
(ii) how we correlate this data with other signals to improve efficiency and quality of our detection and protection rules
(iii) how we leverage users engagement, and upsell them to migrate to a better more secure state
PasswordResearch.com Note: Video of presentation: https://www.youtube.com/watch?v=THdGRujQNEM
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.