A1. Token Binding: Foundation for a More Secure Web
Wednesday, May 9, 2018
9:25 AM - 10:25 AM
Token Binding is a new IETF protocol enabling strong cryptographic defenses against the use of stolen security tokens. This session will provide a technical overview of how Token Binding works and its application to session cookies and higher level protocols like OpenID Connect and OAuth. Bad jokes and gratuitous photography will be included to take the edge off the otherwise very nerdy content.
After completing this session, learner will:
- Be introduced to the important emerging new standards and technology of Token Binding
- Gain a working knowledge of how Token Binding works & the protections it can afford
- Be (hopefully) entertained while learning about a complex subject in a detailed yet accessible manner
As a Distinguished Engineer for Ping Identity, Brian aspires to one day know what a Distinguished Engineer actually does for a living. In the meantime, he's tried to make himself useful in Ping Identity product development while also contributing to open identity and security standards in the IETF and OpenID Foundation.