Projet

Général

Profil

Authentification » Historique » Version 57

Laurent GUERBY, 23/10/2017 13:38

1 1 Laurent GUERBY
{{>toc}}
2 1 Laurent GUERBY
3 1 Laurent GUERBY
h1. Authentification
4 1 Laurent GUERBY
5 25 Laurent GUERBY
h2. Liens
6 25 Laurent GUERBY
7 3 Laurent GUERBY
https://en.wikipedia.org/wiki/YubiKey
8 1 Laurent GUERBY
9 54 Laurent GUERBY
https://tech.slashdot.org/story/17/10/01/2130249/google-plans-upgrade-of-two-factor-authentication-for-politicians-and-ceos
10 54 Laurent GUERBY
11 55 Laurent GUERBY
https://lwn.net/Articles/734767/
12 55 Laurent GUERBY
Strategies for offline PGP key storage
13 55 Laurent GUERBY
14 56 Laurent GUERBY
https://hackaday.com/2017/10/16/inside-two-factor-authentication-apps
15 56 Laurent GUERBY
16 47 Laurent GUERBY
https://www.crowdsupply.com/nth-dimension/signet
17 48 Laurent GUERBY
$39 kicad design
18 1 Laurent GUERBY
19 57 Laurent GUERBY
https://protonmail.com/blog/encrypted_email_authentication/
20 57 Laurent GUERBY
https://tools.ietf.org/html/rfc2945
21 57 Laurent GUERBY
   The SRP Authentication and Key Exchange System
22 57 Laurent GUERBY
23 57 Laurent GUERBY
24 48 Laurent GUERBY
https://www.crowdsupply.com/third-pin/pastilda
25 48 Laurent GUERBY
   $50 middle USB in out
26 48 Laurent GUERBY
   pas vraiment de design file dispo ?
27 48 Laurent GUERBY
   https://bitbucket.org/thirdpin_team/pastilda
28 48 Laurent GUERBY
   old https://github.com/thirdpin/pastilda
29 48 Laurent GUERBY
   
30 50 Laurent GUERBY
https://www.ory.am/run-oauth2-server-open-source-api-security.html
31 49 Laurent GUERBY
https://github.com/ory/hydra
32 49 Laurent GUERBY
   Oauth2 high performance
33 48 Laurent GUERBY
34 53 Laurent GUERBY
https://www.owasp.org/index.php/Authentication_Cheat_Sheet
35 53 Laurent GUERBY
  The Open Web Application Security Project
36 53 Laurent GUERBY
37 1 Laurent GUERBY
https://github.com/conorpp/u2f-zero
38 1 Laurent GUERBY
U2F Zero
39 1 Laurent GUERBY
U2F Zero is an open source U2F token for 2 factor authentication. It is implemented securely. It works with Google accounts, Github, Duo, OpenSSH, and anything else supporting U2F.
40 23 Laurent GUERBY
http://hackaday.com/2017/01/17/shmoocon-2017-the-ins-and-outs-of-manufacturing-and-selling-hardware/
41 36 Laurent GUERBY
https://www.u2fzero.com/
42 2 Laurent GUERBY
43 51 Laurent GUERBY
https://plus.google.com/+LaurenWeinstein/posts/avKcX7QmASi
44 51 Laurent GUERBY
Do I really need to bother with Google's 2-Step Verification system? I don't need more hassle and my passwords are pretty good.
45 51 Laurent GUERBY
46 52 Laurent GUERBY
https://lauren.vortex.com/2017/06/10/google-users-who-want-to-use-2-factor-protections-but-dont-understand-how
47 52 Laurent GUERBY
48 52 Laurent GUERBY
49 38 Laurent GUERBY
https://it.slashdot.org/story/17/05/04/218210/google-was-warned-about-this-weeks-mass-phishing-email-attack-six-years-ago
50 39 Laurent GUERBY
https://oauth.net/
51 41 Laurent GUERBY
https://arstechnica.com/security/2017/05/thieves-drain-2fa-protected-bank-accounts-by-abusing-ss7-routing-protocol/
52 38 Laurent GUERBY
53 12 Laurent GUERBY
http://arstechnica.com/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers/
54 12 Laurent GUERBY
https://en.wikipedia.org/wiki/Universal_2nd_Factor
55 13 Laurent GUERBY
https://it.slashdot.org/story/16/12/24/0037256/u2f-security-keys-may-be-the-worlds-best-hope-against-account-takeovers
56 13 Laurent GUERBY
https://shop.nitrokey.com/shop/product/nitrokey-u2f-5
57 13 Laurent GUERBY
https://homepages.laas.fr/matthieu/talks/token-capitoul.pdf
58 14 Matthieu Herrb
https://github.com/ruimarinho/yubikey-handbook
59 37 Matthieu Herrb
https://research.kudelskisecurity.com/2017/04/28/configuring-yubikey-for-gpg-and-u2f/
60 12 Laurent GUERBY
61 7 Laurent GUERBY
http://hackaday.com/2016/09/29/taking-a-u2f-hardware-key-from-design-to-production/
62 7 Laurent GUERBY
63 1 Laurent GUERBY
https://m.nextinpact.com/news/102201-clefs-gpg-comment-stocker-et-utiliser-via-clef-usb-openpgp-card.htm
64 30 Guilhem Saurel
https://www.palkeo.com/sys/yubikey.html
65 29 Laurent GUERBY
66 24 Laurent GUERBY
http://www.limpkin.fr/index.php?post/2017/01/13/A-Mass-Programming-Bench-for-ATMega32u4-MCUs
67 40 Laurent GUERBY
68 40 Laurent GUERBY
https://www.themooltipass.com/
69 24 Laurent GUERBY
https://www.indiegogo.com/projects/mooltipass-open-source-offline-password-keeper
70 24 Laurent GUERBY
https://www.kickstarter.com/projects/limpkin/mooltipass-mini-your-passwords-on-the-go
71 24 Laurent GUERBY
72 2 Laurent GUERBY
https://raymii.org/s/articles/Get_Started_With_The_Nitrokey_HSM.html#SSH_Keys_with_the_HSM
73 2 Laurent GUERBY
74 16 Laurent GUERBY
https://media.ccc.de/v/33c3-8314-bootstraping_a_slightly_more_secure_laptop
75 16 Laurent GUERBY
76 15 Laurent GUERBY
https://portier.github.io/
77 15 Laurent GUERBY
78 2 Laurent GUERBY
https://sec2016.rmll.info/programme/#usb-armory
79 2 Laurent GUERBY
https://sec2016.rmll.info//files/
80 1 Laurent GUERBY
https://sec2016.rmll.info//files/20160704-02-Barisani-forging_the_usb_armory.pdf
81 48 Laurent GUERBY
https://www.crowdsupply.com/inverse-path/usb-armory
82 48 Laurent GUERBY
  $130
83 48 Laurent GUERBY
  kicad https://github.com/inversepath/usbarmory/tree/master/hardware
84 4 Laurent GUERBY
85 4 Laurent GUERBY
http://keithp.com/blogs/chaoskey/
86 4 Laurent GUERBY
http://saimei.acc.umu.se/pub/debian-meetings/2016/debconf16/Chaoskey_A_Hardware_Random_Number_Generator_for_Everyone.webm
87 5 Laurent GUERBY
88 5 Laurent GUERBY
http://www.nextinpact.com/news/100871-choisir-bon-mot-passe-regles-a-connaitre-pieges-a-eviter.htm
89 5 Laurent GUERBY
http://www.nextinpact.com/news/96167-u2f-double-authentification-par-clef-usb-se-repand-et-debarque-dans-dropbox.htm
90 6 Laurent GUERBY
https://forum.nextinpact.com/topic/157193-bien-g%C3%A9rer-ses-mots-de-passe/
91 5 Laurent GUERBY
https://fidoalliance.org/
92 18 Laurent GUERBY
https://blog.adafruit.com/2017/01/04/new-product-fido-u2f-security-key-u2f-usb-two-step-authentication-security/
93 19 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s
94 8 Laurent GUERBY
95 8 Laurent GUERBY
https://www.entrouvert.com/fr/identite-numerique/authentic-2/
96 9 Laurent GUERBY
97 9 Laurent GUERBY
98 9 Laurent GUERBY
https://indico.mathrice.fr/event/27/contribution/13/material/slides/0.pdf
99 9 Laurent GUERBY
Principe de fonctionnement OAuth2
100 10 Laurent GUERBY
101 10 Laurent GUERBY
http://blog.hansenpartnership.com/using-your-tpm-as-a-secure-key-store/
102 10 Laurent GUERBY
https://blog.filippo.io/giving-up-on-long-term-pgp/
103 11 Laurent GUERBY
104 11 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s 
105 11 Laurent GUERBY
https://github.com/LedgerHQ 
106 11 Laurent GUERBY
https://www.ledgerwallet.com/products/9-ledger-blue
107 17 Laurent GUERBY
108 17 Laurent GUERBY
http://digiposte.fr
109 17 Laurent GUERBY
edf, gdf, impots, assurances en auto via un id (?)
110 17 Laurent GUERBY
tu peux récupérer un zip des dossiers
111 20 Laurent GUERBY
112 20 Laurent GUERBY
113 20 Laurent GUERBY
https://lauren.vortex.com/2017/01/05/biting-the-bullet-its-time-to-require-2-factor-verified-logins
114 21 Laurent GUERBY
https://cloud.google.com/security/security-design/
115 22 Laurent GUERBY
https://github.com/google/key-transparency
116 27 Laurent GUERBY
https://www.facebook.com/notes/facebook-security/security-key-for-safer-logins-with-a-touch/10154125089265766
117 25 Laurent GUERBY
118 28 Laurent GUERBY
https://tech.slashdot.org/story/17/01/30/2023249/facebooks-new-tool-looks-to-replace-traditional-two-factor-authentication
119 28 Laurent GUERBY
https://www.facebook.com/notes/protect-the-graph/improving-account-security-with-delegated-recovery/1833022090271267
120 28 Laurent GUERBY
121 31 Laurent GUERBY
https://keybase.io/blog/keybase-chat
122 31 Laurent GUERBY
123 32 Laurent GUERBY
https://arstechnica.com/gadgets/2017/02/no-key-no-login-g-suite-admins-can-now-make-fido-security-keys-mandatory/
124 32 Laurent GUERBY
125 33 Matthieu Herrb
https://chown.me/blog/my-recent-journey-with-2FA.html
126 33 Matthieu Herrb
127 34 Laurent GUERBY
https://korben.info/keybox-console-centraliser-vos-acces-ssh.html
128 34 Laurent GUERBY
http://sshkeybox.com/
129 34 Laurent GUERBY
130 42 Laurent GUERBY
https://github.com/lipp/login-with
131 42 Laurent GUERBY
132 43 Laurent GUERBY
https://blog.plan99.net/building-account-systems-f790bf5fdbe0
133 43 Laurent GUERBY
https://www.troyhunt.com/passwords-evolved-authentication-guidance-for-the-modern-era/
134 44 Laurent GUERBY
https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/
135 45 Laurent GUERBY
https://www.owasp.org/index.php/Password_Storage_Cheat_Sheet
136 45 Laurent GUERBY
https://blogs.dropbox.com/tech/2016/09/how-dropbox-securely-stores-your-passwords/
137 46 Laurent GUERBY
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
138 43 Laurent GUERBY
139 25 Laurent GUERBY
h2. Passwords
140 25 Laurent GUERBY
141 26 Guilhem Saurel
https://www.passwordstore.org/
142 25 Laurent GUERBY
https://keepassxreboot.github.io/project
143 35 Laurent GUERBY
https://ask.slashdot.org/story/17/03/08/212244/ask-slashdot-should-you-use-password-managers