Tag: authentication
Helping Developers Build Secure APIs From the Start
Karthik Krishnaswamy | | access controls, API, API security, authentication, Authorization, encryptionDevelopers are already tasked with creating and managing APIs; they must also be empowered to secure them easily ...
Navigating Passkeys: Challenges, Pitfalls and Considerations for Developers
Julianna Lamb | | authentication, challenges, developers, devops, Identity, identity and access management, PasskeysWhile passkeys can dramatically improve the security and UX of authenticating users to applications, there’s a lot that still rests on the shoulders of developers ...
FIDO/WebAuthn Passkeys is Inevitable: Get on the Train ¦ IBM CEO Hates WFH
Richi Jennings | | 2FA, Arvind Krishna, authentication, devsecops, FIDO, google, Hybrid Work environment, ibm, managing remote workers, MFA, multi-factor authentication, multifactor authentication, Passkeys, Remote work, The Long View, two factor, WebAuthn, WFH, work from home, working from homeIn this week’s #TheLongView: The Passkeys authentication standard gets a huge boost, and Arvind Krishna wants workers back in the office ...
Okta Makes No-Code Integration Tool for Identity Platform Available
Okta today made generally available an Actions Integration capability that makes it possible to integrate third-party tools without having to write any code. Shiven Ramji, chief product officer for Okta, said this ...
Session Tokens Vs. JWTs: Choosing Your Session Management Solution
In the world of authentication today, session tokens and JSON Web Tokens (JWTs) are the two most popular ways to manage user sessions and maintain a user’s authentication state between calls. Impassioned ...
What GitHub’s 2FA Mandate Means for Devs Everywhere
Multifactor authentication (MFA) is becoming increasingly standard within software development organizations, with GitHub recently announcing that two-factor authentication (2FA) will be mandatory for all code contributors by the end of 2023. This ...
Common RDS Misconfigurations DevSecOps Teams Should Know
Relational databases have become the option of choice for organizations wishing to streamline and scale the use, storage and retrieval of data. Many organizations choose AWS Relational Database Service (RDS) to forego ...
Architecting an Auth System for Applications
Applications today use many login and authentication methods and workflows. Here, I’ll share the most relevant and proven authentication workflows, which you can use as a basis for architecting and designing an ...
FusionAuth Adds Support for ARM-Based Architecture
Most developers need three things in life: Control, interesting projects and the ability to build on the technology of their choice. Now a new development promises to put all three in developers' ...
Apple Outage Outrage | Linux Random Redo | Okta Hacked (or Not)
Richi Jennings | | Akamai, Apple, authentication, DNS, Identity, insider threats, LAPSUS$, linux, NIST, Okta, outage, random number generator, The Long View, This above all—to thine own self be trueIn this week’s The Long View: Why Apple services were down, Linux gets a huge RNG overhaul, and we wonder if Okta was hacked again ...
Authentication in Serverless Apps—What Are the Options?
Serverless applications are growing in popularity among DevOps engineers. They provide a convenient, predictable way to run simple processes like CI/CD builds or automation scripts with no need to stand up infrastructure ...
Why Was Facebook Vulnerable to an Authentication Exploit?
What Happened: As part of a bug bounty program, the AppSecure cybersecurity research team found a vulnerability on the authentication mechanism of Facebook. It gave them the ability to potentially gain full ...
