Web Authentication: From Draft To Product
Date: November 20 2018
Publication: PasswordsCon 2018 Stockholm
Source: Currently no known Internet copy of paper.
Abstract or Summary:
At Duo Security, I have been part of a team driving one of the earliest product implementations of Web Authentication. We intend to leverage open standards like WebAuthn to help our customers move past passwords, and in doing so weíve encountered interesting technical and cultural problems like: How do you assure users that we are not stealing their fingerprints? How do you avoid user confusion when their second factor is on the same device?
In this talk Iíll discuss the many user-experience and engineering challenges faced by my team in exploring and integrating the Web Authentication API. Iíll give an overview of how we architected an extendable WebAuthN backend to account for the many different types of data we can receive. Iíll talk about what it means to bet on Web Authentication and how it can be useful to you today.
PasswordResearch.com Note: Video of presentation: https://www.youtube.com/watch?v=N2nNZqgmu0g Project page: https://webauthn.guide/
Do you have additional information to contribute regarding this research paper? If so, please email firstname.lastname@example.org with the details.