Projet

Général

Profil

Authentification » Historique » Version 56

Laurent GUERBY, 17/10/2017 10:19

1 1 Laurent GUERBY
{{>toc}}
2 1 Laurent GUERBY
3 1 Laurent GUERBY
h1. Authentification
4 1 Laurent GUERBY
5 25 Laurent GUERBY
h2. Liens
6 25 Laurent GUERBY
7 3 Laurent GUERBY
https://en.wikipedia.org/wiki/YubiKey
8 1 Laurent GUERBY
9 54 Laurent GUERBY
https://tech.slashdot.org/story/17/10/01/2130249/google-plans-upgrade-of-two-factor-authentication-for-politicians-and-ceos
10 54 Laurent GUERBY
11 55 Laurent GUERBY
https://lwn.net/Articles/734767/
12 55 Laurent GUERBY
Strategies for offline PGP key storage
13 55 Laurent GUERBY
14 56 Laurent GUERBY
https://hackaday.com/2017/10/16/inside-two-factor-authentication-apps
15 56 Laurent GUERBY
16 47 Laurent GUERBY
https://www.crowdsupply.com/nth-dimension/signet
17 48 Laurent GUERBY
$39 kicad design
18 1 Laurent GUERBY
19 48 Laurent GUERBY
https://www.crowdsupply.com/third-pin/pastilda
20 48 Laurent GUERBY
   $50 middle USB in out
21 48 Laurent GUERBY
   pas vraiment de design file dispo ?
22 48 Laurent GUERBY
   https://bitbucket.org/thirdpin_team/pastilda
23 48 Laurent GUERBY
   old https://github.com/thirdpin/pastilda
24 48 Laurent GUERBY
   
25 50 Laurent GUERBY
https://www.ory.am/run-oauth2-server-open-source-api-security.html
26 49 Laurent GUERBY
https://github.com/ory/hydra
27 49 Laurent GUERBY
   Oauth2 high performance
28 48 Laurent GUERBY
29 53 Laurent GUERBY
https://www.owasp.org/index.php/Authentication_Cheat_Sheet
30 53 Laurent GUERBY
  The Open Web Application Security Project
31 53 Laurent GUERBY
32 1 Laurent GUERBY
https://github.com/conorpp/u2f-zero
33 1 Laurent GUERBY
U2F Zero
34 1 Laurent GUERBY
U2F Zero is an open source U2F token for 2 factor authentication. It is implemented securely. It works with Google accounts, Github, Duo, OpenSSH, and anything else supporting U2F.
35 23 Laurent GUERBY
http://hackaday.com/2017/01/17/shmoocon-2017-the-ins-and-outs-of-manufacturing-and-selling-hardware/
36 36 Laurent GUERBY
https://www.u2fzero.com/
37 2 Laurent GUERBY
38 51 Laurent GUERBY
https://plus.google.com/+LaurenWeinstein/posts/avKcX7QmASi
39 51 Laurent GUERBY
Do I really need to bother with Google's 2-Step Verification system? I don't need more hassle and my passwords are pretty good.
40 51 Laurent GUERBY
41 52 Laurent GUERBY
https://lauren.vortex.com/2017/06/10/google-users-who-want-to-use-2-factor-protections-but-dont-understand-how
42 52 Laurent GUERBY
43 52 Laurent GUERBY
44 38 Laurent GUERBY
https://it.slashdot.org/story/17/05/04/218210/google-was-warned-about-this-weeks-mass-phishing-email-attack-six-years-ago
45 39 Laurent GUERBY
https://oauth.net/
46 41 Laurent GUERBY
https://arstechnica.com/security/2017/05/thieves-drain-2fa-protected-bank-accounts-by-abusing-ss7-routing-protocol/
47 38 Laurent GUERBY
48 12 Laurent GUERBY
http://arstechnica.com/security/2016/12/this-low-cost-device-may-be-the-worlds-best-hope-against-account-takeovers/
49 12 Laurent GUERBY
https://en.wikipedia.org/wiki/Universal_2nd_Factor
50 13 Laurent GUERBY
https://it.slashdot.org/story/16/12/24/0037256/u2f-security-keys-may-be-the-worlds-best-hope-against-account-takeovers
51 13 Laurent GUERBY
https://shop.nitrokey.com/shop/product/nitrokey-u2f-5
52 13 Laurent GUERBY
https://homepages.laas.fr/matthieu/talks/token-capitoul.pdf
53 14 Matthieu Herrb
https://github.com/ruimarinho/yubikey-handbook
54 37 Matthieu Herrb
https://research.kudelskisecurity.com/2017/04/28/configuring-yubikey-for-gpg-and-u2f/
55 12 Laurent GUERBY
56 7 Laurent GUERBY
http://hackaday.com/2016/09/29/taking-a-u2f-hardware-key-from-design-to-production/
57 7 Laurent GUERBY
58 1 Laurent GUERBY
https://m.nextinpact.com/news/102201-clefs-gpg-comment-stocker-et-utiliser-via-clef-usb-openpgp-card.htm
59 30 Guilhem Saurel
https://www.palkeo.com/sys/yubikey.html
60 29 Laurent GUERBY
61 24 Laurent GUERBY
http://www.limpkin.fr/index.php?post/2017/01/13/A-Mass-Programming-Bench-for-ATMega32u4-MCUs
62 40 Laurent GUERBY
63 40 Laurent GUERBY
https://www.themooltipass.com/
64 24 Laurent GUERBY
https://www.indiegogo.com/projects/mooltipass-open-source-offline-password-keeper
65 24 Laurent GUERBY
https://www.kickstarter.com/projects/limpkin/mooltipass-mini-your-passwords-on-the-go
66 24 Laurent GUERBY
67 2 Laurent GUERBY
https://raymii.org/s/articles/Get_Started_With_The_Nitrokey_HSM.html#SSH_Keys_with_the_HSM
68 2 Laurent GUERBY
69 16 Laurent GUERBY
https://media.ccc.de/v/33c3-8314-bootstraping_a_slightly_more_secure_laptop
70 16 Laurent GUERBY
71 15 Laurent GUERBY
https://portier.github.io/
72 15 Laurent GUERBY
73 2 Laurent GUERBY
https://sec2016.rmll.info/programme/#usb-armory
74 2 Laurent GUERBY
https://sec2016.rmll.info//files/
75 1 Laurent GUERBY
https://sec2016.rmll.info//files/20160704-02-Barisani-forging_the_usb_armory.pdf
76 48 Laurent GUERBY
https://www.crowdsupply.com/inverse-path/usb-armory
77 48 Laurent GUERBY
  $130
78 48 Laurent GUERBY
  kicad https://github.com/inversepath/usbarmory/tree/master/hardware
79 4 Laurent GUERBY
80 4 Laurent GUERBY
http://keithp.com/blogs/chaoskey/
81 4 Laurent GUERBY
http://saimei.acc.umu.se/pub/debian-meetings/2016/debconf16/Chaoskey_A_Hardware_Random_Number_Generator_for_Everyone.webm
82 5 Laurent GUERBY
83 5 Laurent GUERBY
http://www.nextinpact.com/news/100871-choisir-bon-mot-passe-regles-a-connaitre-pieges-a-eviter.htm
84 5 Laurent GUERBY
http://www.nextinpact.com/news/96167-u2f-double-authentification-par-clef-usb-se-repand-et-debarque-dans-dropbox.htm
85 6 Laurent GUERBY
https://forum.nextinpact.com/topic/157193-bien-g%C3%A9rer-ses-mots-de-passe/
86 5 Laurent GUERBY
https://fidoalliance.org/
87 18 Laurent GUERBY
https://blog.adafruit.com/2017/01/04/new-product-fido-u2f-security-key-u2f-usb-two-step-authentication-security/
88 19 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s
89 8 Laurent GUERBY
90 8 Laurent GUERBY
https://www.entrouvert.com/fr/identite-numerique/authentic-2/
91 9 Laurent GUERBY
92 9 Laurent GUERBY
93 9 Laurent GUERBY
https://indico.mathrice.fr/event/27/contribution/13/material/slides/0.pdf
94 9 Laurent GUERBY
Principe de fonctionnement OAuth2
95 10 Laurent GUERBY
96 10 Laurent GUERBY
http://blog.hansenpartnership.com/using-your-tpm-as-a-secure-key-store/
97 10 Laurent GUERBY
https://blog.filippo.io/giving-up-on-long-term-pgp/
98 11 Laurent GUERBY
99 11 Laurent GUERBY
https://www.ledgerwallet.com/products/12-ledger-nano-s 
100 11 Laurent GUERBY
https://github.com/LedgerHQ 
101 11 Laurent GUERBY
https://www.ledgerwallet.com/products/9-ledger-blue
102 17 Laurent GUERBY
103 17 Laurent GUERBY
http://digiposte.fr
104 17 Laurent GUERBY
edf, gdf, impots, assurances en auto via un id (?)
105 17 Laurent GUERBY
tu peux récupérer un zip des dossiers
106 20 Laurent GUERBY
107 20 Laurent GUERBY
108 20 Laurent GUERBY
https://lauren.vortex.com/2017/01/05/biting-the-bullet-its-time-to-require-2-factor-verified-logins
109 21 Laurent GUERBY
https://cloud.google.com/security/security-design/
110 22 Laurent GUERBY
https://github.com/google/key-transparency
111 27 Laurent GUERBY
https://www.facebook.com/notes/facebook-security/security-key-for-safer-logins-with-a-touch/10154125089265766
112 25 Laurent GUERBY
113 28 Laurent GUERBY
https://tech.slashdot.org/story/17/01/30/2023249/facebooks-new-tool-looks-to-replace-traditional-two-factor-authentication
114 28 Laurent GUERBY
https://www.facebook.com/notes/protect-the-graph/improving-account-security-with-delegated-recovery/1833022090271267
115 28 Laurent GUERBY
116 31 Laurent GUERBY
https://keybase.io/blog/keybase-chat
117 31 Laurent GUERBY
118 32 Laurent GUERBY
https://arstechnica.com/gadgets/2017/02/no-key-no-login-g-suite-admins-can-now-make-fido-security-keys-mandatory/
119 32 Laurent GUERBY
120 33 Matthieu Herrb
https://chown.me/blog/my-recent-journey-with-2FA.html
121 33 Matthieu Herrb
122 34 Laurent GUERBY
https://korben.info/keybox-console-centraliser-vos-acces-ssh.html
123 34 Laurent GUERBY
http://sshkeybox.com/
124 34 Laurent GUERBY
125 42 Laurent GUERBY
https://github.com/lipp/login-with
126 42 Laurent GUERBY
127 43 Laurent GUERBY
https://blog.plan99.net/building-account-systems-f790bf5fdbe0
128 43 Laurent GUERBY
https://www.troyhunt.com/passwords-evolved-authentication-guidance-for-the-modern-era/
129 44 Laurent GUERBY
https://www.troyhunt.com/password-managers-dont-have-to-be-perfect-they-just-have-to-be-better-than-not-having-one/
130 45 Laurent GUERBY
https://www.owasp.org/index.php/Password_Storage_Cheat_Sheet
131 45 Laurent GUERBY
https://blogs.dropbox.com/tech/2016/09/how-dropbox-securely-stores-your-passwords/
132 46 Laurent GUERBY
https://www.troyhunt.com/introducing-306-million-freely-downloadable-pwned-passwords/
133 43 Laurent GUERBY
134 25 Laurent GUERBY
h2. Passwords
135 25 Laurent GUERBY
136 26 Guilhem Saurel
https://www.passwordstore.org/
137 25 Laurent GUERBY
https://keepassxreboot.github.io/project
138 35 Laurent GUERBY
https://ask.slashdot.org/story/17/03/08/212244/ask-slashdot-should-you-use-password-managers