Projet

Général

Profil

Authentification » Historique » Version 52

Laurent GUERBY, 06/09/2017 19:43

1 1 Laurent GUERBY
{{>toc}}
2 1 Laurent GUERBY
3 1 Laurent GUERBY
h1. Authentification
4 1 Laurent GUERBY
5 25 Laurent GUERBY
h2. Liens
6 25 Laurent GUERBY
7 3 Laurent GUERBY
https://en.wikipedia.org/wiki/YubiKey
8 1 Laurent GUERBY
9 47 Laurent GUERBY
https://www.crowdsupply.com/nth-dimension/signet
10 48 Laurent GUERBY
$39 kicad design
11 1 Laurent GUERBY
12 48 Laurent GUERBY
https://www.crowdsupply.com/third-pin/pastilda
13 48 Laurent GUERBY
   $50 middle USB in out
14 48 Laurent GUERBY
   pas vraiment de design file dispo ?
15 48 Laurent GUERBY
   https://bitbucket.org/thirdpin_team/pastilda
16 48 Laurent GUERBY
   old https://github.com/thirdpin/pastilda
17 48 Laurent GUERBY
   
18 50 Laurent GUERBY
https://www.ory.am/run-oauth2-server-open-source-api-security.html
19 49 Laurent GUERBY
https://github.com/ory/hydra
20 49 Laurent GUERBY
   Oauth2 high performance
21 48 Laurent GUERBY
22 1 Laurent GUERBY
https://github.com/conorpp/u2f-zero
23 1 Laurent GUERBY
U2F Zero
24 1 Laurent GUERBY
U2F Zero is an open source U2F token for 2 factor authentication. It is implemented securely. It works with Google accounts, Github, Duo, OpenSSH, and anything else supporting U2F.
25 23 Laurent GUERBY
http://hackaday.com/2017/01/17/shmoocon-2017-the-ins-and-outs-of-manufacturing-and-selling-hardware/
26 36 Laurent GUERBY
https://www.u2fzero.com/
27 2 Laurent GUERBY
28 51 Laurent GUERBY
https://plus.google.com/+LaurenWeinstein/posts/avKcX7QmASi
29 51 Laurent GUERBY
Do I really need to bother with Google's 2-Step Verification system? I don't need more hassle and my passwords are pretty good.
30 51 Laurent GUERBY
31 52 Laurent GUERBY
https://lauren.vortex.com/2017/06/10/google-users-who-want-to-use-2-factor-protections-but-dont-understand-how
32 52 Laurent GUERBY
33 52 Laurent GUERBY
34 38 Laurent GUERBY
https://it.slashdot.org/story/17/05/04/218210/google-was-warned-about-this-weeks-mass-phishing-email-attack-six-years-ago
35 39 Laurent GUERBY
https://oauth.net/
36 41 Laurent GUERBY
https://arstechnica.com/security/2017/05/thieves-drain-2fa-protected-bank-accounts-by-abusing-ss7-routing-protocol/
37 38 Laurent GUERBY
38 12 Laurent GUERBY
http://arstechnica.com/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers/
39 12 Laurent GUERBY
https://en.wikipedia.org/wiki/Universal_2nd_Factor
40 13 Laurent GUERBY
https://it.slashdot.org/story/16/12/24/0037256/u2f-security-keys-may-be-the-worlds-best-hope-against-account-takeovers
41 13 Laurent GUERBY
https://shop.nitrokey.com/shop/product/nitrokey-u2f-5
42 13 Laurent GUERBY
https://homepages.laas.fr/matthieu/talks/token-capitoul.pdf
43 14 Matthieu Herrb
https://github.com/ruimarinho/yubikey-handbook
44 37 Matthieu Herrb
https://research.kudelskisecurity.com/2017/04/28/configuring-yubikey-for-gpg-and-u2f/
45 12 Laurent GUERBY
46 7 Laurent GUERBY
http://hackaday.com/2016/09/29/taking-a-u2f-hardware-key-from-design-to-production/
47 7 Laurent GUERBY
48 1 Laurent GUERBY
https://m.nextinpact.com/news/102201-clefs-gpg-comment-stocker-et-utiliser-via-clef-usb-openpgp-card.htm
49 30 Guilhem Saurel
https://www.palkeo.com/sys/yubikey.html
50 29 Laurent GUERBY
51 24 Laurent GUERBY
http://www.limpkin.fr/index.php?post/2017/01/13/A-Mass-Programming-Bench-for-ATMega32u4-MCUs
52 40 Laurent GUERBY
53 40 Laurent GUERBY
https://www.themooltipass.com/
54 24 Laurent GUERBY
https://www.indiegogo.com/projects/mooltipass-open-source-offline-password-keeper
55 24 Laurent GUERBY
https://www.kickstarter.com/projects/limpkin/mooltipass-mini-your-passwords-on-the-go
56 24 Laurent GUERBY
57 2 Laurent GUERBY
https://raymii.org/s/articles/Get_Started_With_The_Nitrokey_HSM.html#SSH_Keys_with_the_HSM
58 2 Laurent GUERBY
59 16 Laurent GUERBY
https://media.ccc.de/v/33c3-8314-bootstraping_a_slightly_more_secure_laptop
60 16 Laurent GUERBY
61 15 Laurent GUERBY
https://portier.github.io/
62 15 Laurent GUERBY
63 2 Laurent GUERBY
https://sec2016.rmll.info/programme/#usb-armory
64 2 Laurent GUERBY
https://sec2016.rmll.info//files/
65 1 Laurent GUERBY
https://sec2016.rmll.info//files/20160704-02-Barisani-forging_the_usb_armory.pdf
66 48 Laurent GUERBY
https://www.crowdsupply.com/inverse-path/usb-armory
67 48 Laurent GUERBY
  $130
68 48 Laurent GUERBY
  kicad https://github.com/inversepath/usbarmory/tree/master/hardware
69 4 Laurent GUERBY
70 4 Laurent GUERBY
http://keithp.com/blogs/chaoskey/
71 4 Laurent GUERBY
http://saimei.acc.umu.se/pub/debian-meetings/2016/debconf16/Chaoskey_A_Hardware_Random_Number_Generator_for_Everyone.webm
72 5 Laurent GUERBY
73 5 Laurent GUERBY
http://www.nextinpact.com/news/100871-choisir-bon-mot-passe-regles-a-connaitre-pieges-a-eviter.htm
74 5 Laurent GUERBY
http://www.nextinpact.com/news/96167-u2f-double-authentification-par-clef-usb-se-repand-et-debarque-dans-dropbox.htm
75 6 Laurent GUERBY
https://forum.nextinpact.com/topic/157193-bien-g%C3%A9rer-ses-mots-de-passe/
76 5 Laurent GUERBY
https://fidoalliance.org/
77 18 Laurent GUERBY
https://blog.adafruit.com/2017/01/04/new-product-fido-u2f-security-key-u2f-usb-two-step-authentication-security/
78 19 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s
79 8 Laurent GUERBY
80 8 Laurent GUERBY
https://www.entrouvert.com/fr/identite-numerique/authentic-2/
81 9 Laurent GUERBY
82 9 Laurent GUERBY
83 9 Laurent GUERBY
https://indico.mathrice.fr/event/27/contribution/13/material/slides/0.pdf
84 9 Laurent GUERBY
Principe de fonctionnement OAuth2
85 10 Laurent GUERBY
86 10 Laurent GUERBY
http://blog.hansenpartnership.com/using-your-tpm-as-a-secure-key-store/
87 10 Laurent GUERBY
https://blog.filippo.io/giving-up-on-long-term-pgp/
88 11 Laurent GUERBY
89 11 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s 
90 11 Laurent GUERBY
https://github.com/LedgerHQ 
91 11 Laurent GUERBY
https://www.ledgerwallet.com/products/9-ledger-blue
92 17 Laurent GUERBY
93 17 Laurent GUERBY
http://digiposte.fr
94 17 Laurent GUERBY
edf, gdf, impots, assurances en auto via un id (?)
95 17 Laurent GUERBY
tu peux récupérer un zip des dossiers
96 20 Laurent GUERBY
97 20 Laurent GUERBY
98 20 Laurent GUERBY
https://lauren.vortex.com/2017/01/05/biting-the-bullet-its-time-to-require-2-factor-verified-logins
99 21 Laurent GUERBY
https://cloud.google.com/security/security-design/
100 22 Laurent GUERBY
https://github.com/google/key-transparency
101 27 Laurent GUERBY
https://www.facebook.com/notes/facebook-security/security-key-for-safer-logins-with-a-touch/10154125089265766
102 25 Laurent GUERBY
103 28 Laurent GUERBY
https://tech.slashdot.org/story/17/01/30/2023249/facebooks-new-tool-looks-to-replace-traditional-two-factor-authentication
104 28 Laurent GUERBY
https://www.facebook.com/notes/protect-the-graph/improving-account-security-with-delegated-recovery/1833022090271267
105 28 Laurent GUERBY
106 31 Laurent GUERBY
https://keybase.io/blog/keybase-chat
107 31 Laurent GUERBY
108 32 Laurent GUERBY
https://arstechnica.com/gadgets/2017/02/no-key-no-login-g-suite-admins-can-now-make-fido-security-keys-mandatory/
109 32 Laurent GUERBY
110 33 Matthieu Herrb
https://chown.me/blog/my-recent-journey-with-2FA.html
111 33 Matthieu Herrb
112 34 Laurent GUERBY
https://korben.info/keybox-console-centraliser-vos-acces-ssh.html
113 34 Laurent GUERBY
http://sshkeybox.com/
114 34 Laurent GUERBY
115 42 Laurent GUERBY
https://github.com/lipp/login-with
116 42 Laurent GUERBY
117 43 Laurent GUERBY
https://blog.plan99.net/building-account-systems-f790bf5fdbe0
118 43 Laurent GUERBY
https://www.troyhunt.com/passwords-evolved-authentication-guidance-for-the-modern-era/
119 44 Laurent GUERBY
https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/
120 45 Laurent GUERBY
https://www.owasp.org/index.php/Password_Storage_Cheat_Sheet
121 45 Laurent GUERBY
https://blogs.dropbox.com/tech/2016/09/how-dropbox-securely-stores-your-passwords/
122 46 Laurent GUERBY
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
123 43 Laurent GUERBY
124 25 Laurent GUERBY
h2. Passwords
125 25 Laurent GUERBY
126 26 Guilhem Saurel
https://www.passwordstore.org/
127 25 Laurent GUERBY
https://keepassxreboot.github.io/project
128 35 Laurent GUERBY
https://ask.slashdot.org/story/17/03/08/212244/ask-slashdot-should-you-use-password-managers