JWT Authentication with Django at PyTennessee 2019
1 j'aime
vues
Talk is about the JWT Authentication with Django which plays an important role in modern day application development where it is a lot more than just the login screen, People will get know about different ways of authentication and authorization, concepts that make up modern identity. Authentication is one of the big parts of every application. Security is always something that is changing and evolving. We’re using the same authentication methods from the dawn of the web. Unfortunately, passwords are increasingly broken. In this talk i will discuss about the JWT Authentication with Django which plays an important role in modern day application development where it is a lot more than just the login screen, People will get know about different ways of authentication and authorization, concepts that make up modern identity and how they can integrate with any particular language or stack and how they can use JSON Web Tokens to add both Authentication and Authorization to our functions which is important for us to be secure.
JWT Authentication with Django at PyTennessee 2019
- JWT Authentication with DJango
- Who AM I Viral Parmar Founder Infinite Defense Foundation Founder of ComExpo Cyber Security Cyber Security Researcher Mozilla Reps, Mozilla Foundation Mentor, Mozilla Open Leadership Given more then 150 seminar’s and workshop. Always remember: Know hAckiNG, but no HaCKing. @viralparmarhack
- Todays Agenda o Common Vulnerabilities o Authentication & Authorization o Serverless o JWT o Django o JWT authentication with Django
- Common Web Security Vulnerabilities ● Exposing Sensitive Data ● Broken Authentication ● Security Misconfiguration ● Injection Vulnerability
- Overcome Security Vulnerabilitiesern Identity ? ● Authentication ● Authorization ● Security ● Personalization
- Authentication ➔ Traditional Username and Password ➔ Social login via Facebook,Twitter, Google , etc. ➔ Enterprise Federation and Single Sign On ➔ Passwordless
- Traditional Username and Password ● Most Common ● Easy to Implement ● Least Secure
- Social Login ● Common ● Medium Difficulty ● More secure
- Single Sign On ● Most Common in Enterprise ● Difficult to Implement ● Solve Authorization use cases
- Passwordless ● Rare / Upcoming ● Easy to Implement ● Very secure
- Authorization ➔ Ensure the user has the right access at the right time ➔ Grant, Change and Revoke access
- viralparmar.com
- viralparmar.com
- Any Questions
- Contact Me in.linkedin.com/in/viralparmarhacker veerskyfire@protonmail.com facebook.com/viralparmarhacker twitter.com/viralparmarhack Stay Connected Stay Safe +91 8980808222 Thank You
- #LogOutNow
Notes de l'éditeur
- Authentication : The way you login Authorization : Right access, Right People , Right Time Security : Protecting data in motion and at rest Personalization : Tailored user experience