Projet

Général

Profil

Authentification » Historique » Version 59

Laurent GUERBY, 25/10/2017 11:46

1 1 Laurent GUERBY
{{>toc}}
2 1 Laurent GUERBY
3 1 Laurent GUERBY
h1. Authentification
4 1 Laurent GUERBY
5 25 Laurent GUERBY
h2. Liens
6 25 Laurent GUERBY
7 3 Laurent GUERBY
https://en.wikipedia.org/wiki/YubiKey
8 1 Laurent GUERBY
9 54 Laurent GUERBY
https://tech.slashdot.org/story/17/10/01/2130249/google-plans-upgrade-of-two-factor-authentication-for-politicians-and-ceos
10 54 Laurent GUERBY
11 55 Laurent GUERBY
https://lwn.net/Articles/734767/
12 55 Laurent GUERBY
Strategies for offline PGP key storage
13 55 Laurent GUERBY
14 56 Laurent GUERBY
https://hackaday.com/2017/10/16/inside-two-factor-authentication-apps
15 56 Laurent GUERBY
16 59 Laurent GUERBY
https://www.nextinpact.com/brief/protonmail-proposera-sa-propre-cle-de-securite-u2f-789.htm
17 59 Laurent GUERBY
18 47 Laurent GUERBY
https://www.crowdsupply.com/nth-dimension/signet
19 48 Laurent GUERBY
$39 kicad design
20 1 Laurent GUERBY
21 57 Laurent GUERBY
https://protonmail.com/blog/encrypted_email_authentication/
22 57 Laurent GUERBY
https://tools.ietf.org/html/rfc2945
23 58 Laurent GUERBY
   The SRP Authentication and Key Exchange System Secure Remote Password (SRP)
24 57 Laurent GUERBY
25 57 Laurent GUERBY
26 48 Laurent GUERBY
https://www.crowdsupply.com/third-pin/pastilda
27 48 Laurent GUERBY
   $50 middle USB in out
28 48 Laurent GUERBY
   pas vraiment de design file dispo ?
29 48 Laurent GUERBY
   https://bitbucket.org/thirdpin_team/pastilda
30 48 Laurent GUERBY
   old https://github.com/thirdpin/pastilda
31 48 Laurent GUERBY
   
32 50 Laurent GUERBY
https://www.ory.am/run-oauth2-server-open-source-api-security.html
33 49 Laurent GUERBY
https://github.com/ory/hydra
34 49 Laurent GUERBY
   Oauth2 high performance
35 48 Laurent GUERBY
36 53 Laurent GUERBY
https://www.owasp.org/index.php/Authentication_Cheat_Sheet
37 53 Laurent GUERBY
  The Open Web Application Security Project
38 53 Laurent GUERBY
39 1 Laurent GUERBY
https://github.com/conorpp/u2f-zero
40 1 Laurent GUERBY
U2F Zero
41 1 Laurent GUERBY
U2F Zero is an open source U2F token for 2 factor authentication. It is implemented securely. It works with Google accounts, Github, Duo, OpenSSH, and anything else supporting U2F.
42 23 Laurent GUERBY
http://hackaday.com/2017/01/17/shmoocon-2017-the-ins-and-outs-of-manufacturing-and-selling-hardware/
43 36 Laurent GUERBY
https://www.u2fzero.com/
44 2 Laurent GUERBY
45 51 Laurent GUERBY
https://plus.google.com/+LaurenWeinstein/posts/avKcX7QmASi
46 51 Laurent GUERBY
Do I really need to bother with Google's 2-Step Verification system? I don't need more hassle and my passwords are pretty good.
47 51 Laurent GUERBY
48 52 Laurent GUERBY
https://lauren.vortex.com/2017/06/10/google-users-who-want-to-use-2-factor-protections-but-dont-understand-how
49 52 Laurent GUERBY
50 52 Laurent GUERBY
51 38 Laurent GUERBY
https://it.slashdot.org/story/17/05/04/218210/google-was-warned-about-this-weeks-mass-phishing-email-attack-six-years-ago
52 39 Laurent GUERBY
https://oauth.net/
53 41 Laurent GUERBY
https://arstechnica.com/security/2017/05/thieves-drain-2fa-protected-bank-accounts-by-abusing-ss7-routing-protocol/
54 38 Laurent GUERBY
55 12 Laurent GUERBY
http://arstechnica.com/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers/
56 12 Laurent GUERBY
https://en.wikipedia.org/wiki/Universal_2nd_Factor
57 13 Laurent GUERBY
https://it.slashdot.org/story/16/12/24/0037256/u2f-security-keys-may-be-the-worlds-best-hope-against-account-takeovers
58 13 Laurent GUERBY
https://shop.nitrokey.com/shop/product/nitrokey-u2f-5
59 13 Laurent GUERBY
https://homepages.laas.fr/matthieu/talks/token-capitoul.pdf
60 14 Matthieu Herrb
https://github.com/ruimarinho/yubikey-handbook
61 37 Matthieu Herrb
https://research.kudelskisecurity.com/2017/04/28/configuring-yubikey-for-gpg-and-u2f/
62 12 Laurent GUERBY
63 7 Laurent GUERBY
http://hackaday.com/2016/09/29/taking-a-u2f-hardware-key-from-design-to-production/
64 7 Laurent GUERBY
65 1 Laurent GUERBY
https://m.nextinpact.com/news/102201-clefs-gpg-comment-stocker-et-utiliser-via-clef-usb-openpgp-card.htm
66 30 Guilhem Saurel
https://www.palkeo.com/sys/yubikey.html
67 29 Laurent GUERBY
68 24 Laurent GUERBY
http://www.limpkin.fr/index.php?post/2017/01/13/A-Mass-Programming-Bench-for-ATMega32u4-MCUs
69 40 Laurent GUERBY
70 40 Laurent GUERBY
https://www.themooltipass.com/
71 24 Laurent GUERBY
https://www.indiegogo.com/projects/mooltipass-open-source-offline-password-keeper
72 24 Laurent GUERBY
https://www.kickstarter.com/projects/limpkin/mooltipass-mini-your-passwords-on-the-go
73 24 Laurent GUERBY
74 2 Laurent GUERBY
https://raymii.org/s/articles/Get_Started_With_The_Nitrokey_HSM.html#SSH_Keys_with_the_HSM
75 2 Laurent GUERBY
76 16 Laurent GUERBY
https://media.ccc.de/v/33c3-8314-bootstraping_a_slightly_more_secure_laptop
77 16 Laurent GUERBY
78 15 Laurent GUERBY
https://portier.github.io/
79 15 Laurent GUERBY
80 2 Laurent GUERBY
https://sec2016.rmll.info/programme/#usb-armory
81 2 Laurent GUERBY
https://sec2016.rmll.info//files/
82 1 Laurent GUERBY
https://sec2016.rmll.info//files/20160704-02-Barisani-forging_the_usb_armory.pdf
83 48 Laurent GUERBY
https://www.crowdsupply.com/inverse-path/usb-armory
84 48 Laurent GUERBY
  $130
85 48 Laurent GUERBY
  kicad https://github.com/inversepath/usbarmory/tree/master/hardware
86 4 Laurent GUERBY
87 4 Laurent GUERBY
http://keithp.com/blogs/chaoskey/
88 4 Laurent GUERBY
http://saimei.acc.umu.se/pub/debian-meetings/2016/debconf16/Chaoskey_A_Hardware_Random_Number_Generator_for_Everyone.webm
89 5 Laurent GUERBY
90 5 Laurent GUERBY
http://www.nextinpact.com/news/100871-choisir-bon-mot-passe-regles-a-connaitre-pieges-a-eviter.htm
91 5 Laurent GUERBY
http://www.nextinpact.com/news/96167-u2f-double-authentification-par-clef-usb-se-repand-et-debarque-dans-dropbox.htm
92 6 Laurent GUERBY
https://forum.nextinpact.com/topic/157193-bien-g%C3%A9rer-ses-mots-de-passe/
93 5 Laurent GUERBY
https://fidoalliance.org/
94 18 Laurent GUERBY
https://blog.adafruit.com/2017/01/04/new-product-fido-u2f-security-key-u2f-usb-two-step-authentication-security/
95 19 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s
96 8 Laurent GUERBY
97 8 Laurent GUERBY
https://www.entrouvert.com/fr/identite-numerique/authentic-2/
98 9 Laurent GUERBY
99 9 Laurent GUERBY
100 9 Laurent GUERBY
https://indico.mathrice.fr/event/27/contribution/13/material/slides/0.pdf
101 9 Laurent GUERBY
Principe de fonctionnement OAuth2
102 10 Laurent GUERBY
103 10 Laurent GUERBY
http://blog.hansenpartnership.com/using-your-tpm-as-a-secure-key-store/
104 10 Laurent GUERBY
https://blog.filippo.io/giving-up-on-long-term-pgp/
105 11 Laurent GUERBY
106 11 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s 
107 11 Laurent GUERBY
https://github.com/LedgerHQ 
108 11 Laurent GUERBY
https://www.ledgerwallet.com/products/9-ledger-blue
109 17 Laurent GUERBY
110 17 Laurent GUERBY
http://digiposte.fr
111 17 Laurent GUERBY
edf, gdf, impots, assurances en auto via un id (?)
112 17 Laurent GUERBY
tu peux récupérer un zip des dossiers
113 20 Laurent GUERBY
114 20 Laurent GUERBY
115 20 Laurent GUERBY
https://lauren.vortex.com/2017/01/05/biting-the-bullet-its-time-to-require-2-factor-verified-logins
116 21 Laurent GUERBY
https://cloud.google.com/security/security-design/
117 22 Laurent GUERBY
https://github.com/google/key-transparency
118 27 Laurent GUERBY
https://www.facebook.com/notes/facebook-security/security-key-for-safer-logins-with-a-touch/10154125089265766
119 25 Laurent GUERBY
120 28 Laurent GUERBY
https://tech.slashdot.org/story/17/01/30/2023249/facebooks-new-tool-looks-to-replace-traditional-two-factor-authentication
121 28 Laurent GUERBY
https://www.facebook.com/notes/protect-the-graph/improving-account-security-with-delegated-recovery/1833022090271267
122 28 Laurent GUERBY
123 31 Laurent GUERBY
https://keybase.io/blog/keybase-chat
124 31 Laurent GUERBY
125 32 Laurent GUERBY
https://arstechnica.com/gadgets/2017/02/no-key-no-login-g-suite-admins-can-now-make-fido-security-keys-mandatory/
126 32 Laurent GUERBY
127 33 Matthieu Herrb
https://chown.me/blog/my-recent-journey-with-2FA.html
128 33 Matthieu Herrb
129 34 Laurent GUERBY
https://korben.info/keybox-console-centraliser-vos-acces-ssh.html
130 34 Laurent GUERBY
http://sshkeybox.com/
131 34 Laurent GUERBY
132 42 Laurent GUERBY
https://github.com/lipp/login-with
133 42 Laurent GUERBY
134 43 Laurent GUERBY
https://blog.plan99.net/building-account-systems-f790bf5fdbe0
135 43 Laurent GUERBY
https://www.troyhunt.com/passwords-evolved-authentication-guidance-for-the-modern-era/
136 44 Laurent GUERBY
https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/
137 45 Laurent GUERBY
https://www.owasp.org/index.php/Password_Storage_Cheat_Sheet
138 45 Laurent GUERBY
https://blogs.dropbox.com/tech/2016/09/how-dropbox-securely-stores-your-passwords/
139 46 Laurent GUERBY
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
140 43 Laurent GUERBY
141 25 Laurent GUERBY
h2. Passwords
142 25 Laurent GUERBY
143 26 Guilhem Saurel
https://www.passwordstore.org/
144 25 Laurent GUERBY
https://keepassxreboot.github.io/project
145 35 Laurent GUERBY
https://ask.slashdot.org/story/17/03/08/212244/ask-slashdot-should-you-use-password-managers