Projet

Général

Profil

Authentification » Historique » Version 54

Laurent GUERBY, 02/10/2017 09:50

1 1 Laurent GUERBY
{{>toc}}
2 1 Laurent GUERBY
3 1 Laurent GUERBY
h1. Authentification
4 1 Laurent GUERBY
5 25 Laurent GUERBY
h2. Liens
6 25 Laurent GUERBY
7 3 Laurent GUERBY
https://en.wikipedia.org/wiki/YubiKey
8 1 Laurent GUERBY
9 54 Laurent GUERBY
https://tech.slashdot.org/story/17/10/01/2130249/google-plans-upgrade-of-two-factor-authentication-for-politicians-and-ceos
10 54 Laurent GUERBY
11 47 Laurent GUERBY
https://www.crowdsupply.com/nth-dimension/signet
12 48 Laurent GUERBY
$39 kicad design
13 1 Laurent GUERBY
14 48 Laurent GUERBY
https://www.crowdsupply.com/third-pin/pastilda
15 48 Laurent GUERBY
   $50 middle USB in out
16 48 Laurent GUERBY
   pas vraiment de design file dispo ?
17 48 Laurent GUERBY
   https://bitbucket.org/thirdpin_team/pastilda
18 48 Laurent GUERBY
   old https://github.com/thirdpin/pastilda
19 48 Laurent GUERBY
   
20 50 Laurent GUERBY
https://www.ory.am/run-oauth2-server-open-source-api-security.html
21 49 Laurent GUERBY
https://github.com/ory/hydra
22 49 Laurent GUERBY
   Oauth2 high performance
23 48 Laurent GUERBY
24 53 Laurent GUERBY
https://www.owasp.org/index.php/Authentication_Cheat_Sheet
25 53 Laurent GUERBY
  The Open Web Application Security Project
26 53 Laurent GUERBY
27 1 Laurent GUERBY
https://github.com/conorpp/u2f-zero
28 1 Laurent GUERBY
U2F Zero
29 1 Laurent GUERBY
U2F Zero is an open source U2F token for 2 factor authentication. It is implemented securely. It works with Google accounts, Github, Duo, OpenSSH, and anything else supporting U2F.
30 23 Laurent GUERBY
http://hackaday.com/2017/01/17/shmoocon-2017-the-ins-and-outs-of-manufacturing-and-selling-hardware/
31 36 Laurent GUERBY
https://www.u2fzero.com/
32 2 Laurent GUERBY
33 51 Laurent GUERBY
https://plus.google.com/+LaurenWeinstein/posts/avKcX7QmASi
34 51 Laurent GUERBY
Do I really need to bother with Google's 2-Step Verification system? I don't need more hassle and my passwords are pretty good.
35 51 Laurent GUERBY
36 52 Laurent GUERBY
https://lauren.vortex.com/2017/06/10/google-users-who-want-to-use-2-factor-protections-but-dont-understand-how
37 52 Laurent GUERBY
38 52 Laurent GUERBY
39 38 Laurent GUERBY
https://it.slashdot.org/story/17/05/04/218210/google-was-warned-about-this-weeks-mass-phishing-email-attack-six-years-ago
40 39 Laurent GUERBY
https://oauth.net/
41 41 Laurent GUERBY
https://arstechnica.com/security/2017/05/thieves-drain-2fa-protected-bank-accounts-by-abusing-ss7-routing-protocol/
42 38 Laurent GUERBY
43 12 Laurent GUERBY
http://arstechnica.com/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers/
44 12 Laurent GUERBY
https://en.wikipedia.org/wiki/Universal_2nd_Factor
45 13 Laurent GUERBY
https://it.slashdot.org/story/16/12/24/0037256/u2f-security-keys-may-be-the-worlds-best-hope-against-account-takeovers
46 13 Laurent GUERBY
https://shop.nitrokey.com/shop/product/nitrokey-u2f-5
47 13 Laurent GUERBY
https://homepages.laas.fr/matthieu/talks/token-capitoul.pdf
48 14 Matthieu Herrb
https://github.com/ruimarinho/yubikey-handbook
49 37 Matthieu Herrb
https://research.kudelskisecurity.com/2017/04/28/configuring-yubikey-for-gpg-and-u2f/
50 12 Laurent GUERBY
51 7 Laurent GUERBY
http://hackaday.com/2016/09/29/taking-a-u2f-hardware-key-from-design-to-production/
52 7 Laurent GUERBY
53 1 Laurent GUERBY
https://m.nextinpact.com/news/102201-clefs-gpg-comment-stocker-et-utiliser-via-clef-usb-openpgp-card.htm
54 30 Guilhem Saurel
https://www.palkeo.com/sys/yubikey.html
55 29 Laurent GUERBY
56 24 Laurent GUERBY
http://www.limpkin.fr/index.php?post/2017/01/13/A-Mass-Programming-Bench-for-ATMega32u4-MCUs
57 40 Laurent GUERBY
58 40 Laurent GUERBY
https://www.themooltipass.com/
59 24 Laurent GUERBY
https://www.indiegogo.com/projects/mooltipass-open-source-offline-password-keeper
60 24 Laurent GUERBY
https://www.kickstarter.com/projects/limpkin/mooltipass-mini-your-passwords-on-the-go
61 24 Laurent GUERBY
62 2 Laurent GUERBY
https://raymii.org/s/articles/Get_Started_With_The_Nitrokey_HSM.html#SSH_Keys_with_the_HSM
63 2 Laurent GUERBY
64 16 Laurent GUERBY
https://media.ccc.de/v/33c3-8314-bootstraping_a_slightly_more_secure_laptop
65 16 Laurent GUERBY
66 15 Laurent GUERBY
https://portier.github.io/
67 15 Laurent GUERBY
68 2 Laurent GUERBY
https://sec2016.rmll.info/programme/#usb-armory
69 2 Laurent GUERBY
https://sec2016.rmll.info//files/
70 1 Laurent GUERBY
https://sec2016.rmll.info//files/20160704-02-Barisani-forging_the_usb_armory.pdf
71 48 Laurent GUERBY
https://www.crowdsupply.com/inverse-path/usb-armory
72 48 Laurent GUERBY
  $130
73 48 Laurent GUERBY
  kicad https://github.com/inversepath/usbarmory/tree/master/hardware
74 4 Laurent GUERBY
75 4 Laurent GUERBY
http://keithp.com/blogs/chaoskey/
76 4 Laurent GUERBY
http://saimei.acc.umu.se/pub/debian-meetings/2016/debconf16/Chaoskey_A_Hardware_Random_Number_Generator_for_Everyone.webm
77 5 Laurent GUERBY
78 5 Laurent GUERBY
http://www.nextinpact.com/news/100871-choisir-bon-mot-passe-regles-a-connaitre-pieges-a-eviter.htm
79 5 Laurent GUERBY
http://www.nextinpact.com/news/96167-u2f-double-authentification-par-clef-usb-se-repand-et-debarque-dans-dropbox.htm
80 6 Laurent GUERBY
https://forum.nextinpact.com/topic/157193-bien-g%C3%A9rer-ses-mots-de-passe/
81 5 Laurent GUERBY
https://fidoalliance.org/
82 18 Laurent GUERBY
https://blog.adafruit.com/2017/01/04/new-product-fido-u2f-security-key-u2f-usb-two-step-authentication-security/
83 19 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s
84 8 Laurent GUERBY
85 8 Laurent GUERBY
https://www.entrouvert.com/fr/identite-numerique/authentic-2/
86 9 Laurent GUERBY
87 9 Laurent GUERBY
88 9 Laurent GUERBY
https://indico.mathrice.fr/event/27/contribution/13/material/slides/0.pdf
89 9 Laurent GUERBY
Principe de fonctionnement OAuth2
90 10 Laurent GUERBY
91 10 Laurent GUERBY
http://blog.hansenpartnership.com/using-your-tpm-as-a-secure-key-store/
92 10 Laurent GUERBY
https://blog.filippo.io/giving-up-on-long-term-pgp/
93 11 Laurent GUERBY
94 11 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s 
95 11 Laurent GUERBY
https://github.com/LedgerHQ 
96 11 Laurent GUERBY
https://www.ledgerwallet.com/products/9-ledger-blue
97 17 Laurent GUERBY
98 17 Laurent GUERBY
http://digiposte.fr
99 17 Laurent GUERBY
edf, gdf, impots, assurances en auto via un id (?)
100 17 Laurent GUERBY
tu peux récupérer un zip des dossiers
101 20 Laurent GUERBY
102 20 Laurent GUERBY
103 20 Laurent GUERBY
https://lauren.vortex.com/2017/01/05/biting-the-bullet-its-time-to-require-2-factor-verified-logins
104 21 Laurent GUERBY
https://cloud.google.com/security/security-design/
105 22 Laurent GUERBY
https://github.com/google/key-transparency
106 27 Laurent GUERBY
https://www.facebook.com/notes/facebook-security/security-key-for-safer-logins-with-a-touch/10154125089265766
107 25 Laurent GUERBY
108 28 Laurent GUERBY
https://tech.slashdot.org/story/17/01/30/2023249/facebooks-new-tool-looks-to-replace-traditional-two-factor-authentication
109 28 Laurent GUERBY
https://www.facebook.com/notes/protect-the-graph/improving-account-security-with-delegated-recovery/1833022090271267
110 28 Laurent GUERBY
111 31 Laurent GUERBY
https://keybase.io/blog/keybase-chat
112 31 Laurent GUERBY
113 32 Laurent GUERBY
https://arstechnica.com/gadgets/2017/02/no-key-no-login-g-suite-admins-can-now-make-fido-security-keys-mandatory/
114 32 Laurent GUERBY
115 33 Matthieu Herrb
https://chown.me/blog/my-recent-journey-with-2FA.html
116 33 Matthieu Herrb
117 34 Laurent GUERBY
https://korben.info/keybox-console-centraliser-vos-acces-ssh.html
118 34 Laurent GUERBY
http://sshkeybox.com/
119 34 Laurent GUERBY
120 42 Laurent GUERBY
https://github.com/lipp/login-with
121 42 Laurent GUERBY
122 43 Laurent GUERBY
https://blog.plan99.net/building-account-systems-f790bf5fdbe0
123 43 Laurent GUERBY
https://www.troyhunt.com/passwords-evolved-authentication-guidance-for-the-modern-era/
124 44 Laurent GUERBY
https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/
125 45 Laurent GUERBY
https://www.owasp.org/index.php/Password_Storage_Cheat_Sheet
126 45 Laurent GUERBY
https://blogs.dropbox.com/tech/2016/09/how-dropbox-securely-stores-your-passwords/
127 46 Laurent GUERBY
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
128 43 Laurent GUERBY
129 25 Laurent GUERBY
h2. Passwords
130 25 Laurent GUERBY
131 26 Guilhem Saurel
https://www.passwordstore.org/
132 25 Laurent GUERBY
https://keepassxreboot.github.io/project
133 35 Laurent GUERBY
https://ask.slashdot.org/story/17/03/08/212244/ask-slashdot-should-you-use-password-managers