cis14: bringing crypto back: web authentication without bearer tokens
Post on 18-May-2015
535 Views
Preview:
DESCRIPTION
Dirk Balfanz and Adam Dawes, Google A discussion of two efforts at Google, both designed to incrementally add public-key cryptography to existing authentication mechanisms—one aimed at cookies, and one aimed at passwords—that offer the security of public-key-based challenge-response protocols without getting rid of cookies or passwords.
TRANSCRIPT
top related