Authentication is one of the big parts of every application. Security is always something that is changing and evolving. We’re using the same authentication methods from the dawn of the web. Unfortunately, passwords are increasingly broken. In this talk Viral will discuss about the JWT Authentication with JS which plays an important role in modern day application development where it is a lot more than just the login screen, People will get know about different ways of authentication and authorization, concepts that make up modern identity and how they can integrate with any particular language or stack and how they can use JSON Web Tokens to add both Authentication and Authorization to our functions with Auth0 authentication, which is an online web service that handles authentication protocols like OAuth2, LDAP, and OpenID Connect to allow clients to create authenticated services without the need to build the entire infrastructure. This way, an application can retrieve user-related data and showcase protected information to only logged in users.

1. Modern Authentication
with Auth0

2. Who AM I
Viral Parmar
Founder Infinite Defense Foundation
Founder of ComExpo Cyber Security
Cyber Security Researcher
Mozilla Reps, Mozilla Foundation
Mentor, Mozilla Open Leadership
Given more then 100 seminar’s and workshop.
Always remember: Know hAckiNG, but no HaCKing.
@viralparmarhack

3. Common Web Security Vulnerabilities
● Exposing Sensitive Data
● Broken Authentication
● Security Misconfiguration
● Injection Vulnerability

4. The new way to solve Identity

5. What is Identity ?

6. What is Modern Identity ?
● Authentication
● Authorization
● Security
● Personalization

7. Authentication
➔ Traditional Username and Password
➔ Social login via Facebook,Twitter, Google , etc.
➔ Enterprise Federation and Single Sign On
➔ Passwordless

8. Traditional
Username and
Password
● Most Common
● Easy to Implement
● Least Secure

9. Social Login
● Common
● Medium Difficulty
● More secure

10. Single Sign On
● Most Common in
Enterprise
● Difficult to Implement
● Solve Authorization
use cases

11. Passwordless
● Rare / Upcoming
● Easy to Implement
● Very secure

12. Authorization
➔ Ensure the user has the right access at the right time
➔ Grant, Change and Revoke access

13. Security
Biggest concern for our valuable data

14. Password
● Complexity
● Storage
● Security

15. Multifactor Authentication
● Something you know, have , are
Brute Force Protection
● Prevent repeated failed login attempts
● Alert user and validate identity
Anomaly Detection
● Proactively protect users
● Alert user of suspicious activity
● Breached password detection

16. Personalization
➔ Give a personal touch to each user
➔ Make Data work for you
➔ Enhanced Analytics

17. Auth0
Identity as a Service
● Modern Identity in 10
minutes
● Free Tier ( 7000 Monthly
Active users )
● Team of Security Expert

18. Visit auth0.com

19. Explore...

21. Any Questions

22. Contact Me
in.linkedin.com/in/viralparmarhacker
viralparmarhacker@gmail.com
facebook.com/viralparmarhacker
twitter.com/viralparmarhack
Stay Connected
Stay Safe
+91 8980808222
Thank You

23. #LogOutNow