This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthor

Only authorized users are allowed to rename pages.

Only authorized users are allowed to delete pages.

Page revision history

Version Date Modified Size Author Changes ... Change note

Page References

Incoming links Outgoing links
Web Authentication
Web Authentication

Version management

Difference between version and

At line 1 added 35 lines
!!! Overview
[{$pagename}] should use [WebAuthN].
!! Historic [{$pagename}]
[{$pagename}] is about [Authentication] over:
* [HTTP]
* [HTTPS]
* [WWW]
[{$pagename}] methods [SHOULD] be performing [Delegation] and [SHOULD NOT] using [Impersonation].
[{$pagename}] may be implemented using [WEB Access Management] technologies.
[{$pagename}] is often performed using [LDAP Authentication].
!! Do Not Do [{$pagename}]
Well, do not do it yourself. Use [OpenID Connect] or [User-Managed Access].
If you must, then __use only Known widely implemented __[APIs] or [SDKs] for all [Encryption] and [Hashing].
!! [Best Practices Password]
Be sure to use [Best Practices Password]
!! __MUST-READ LINKS__ About [Web|HTTP] [Authentication]
* [OWASP Guide To Authentication|http://www.owasp.org/index.php/Guide_to_Authentication|target='_blank']
* [OWASP Authentication Cheat Sheet|https://www.owasp.org/index.php/Authentication_Cheat_Sheet|target='_blank']
* [Dos and Don’ts of Client Authentication on the Web (very readable MIT research paper)|https://pdos.csail.mit.edu/papers/webauth:sec10.pdf|target='_blank']
* [Wikipedia: HTTP cookie|Wikipedia:HTTP_cookie#Drawbacks_of_cookies|target='_blank']
* [Personal knowledge questions for fallback authentication: Security questions in the era of Facebook (very readable Berkeley research paper)|http://cups.cs.cmu.edu/soups/2008/proceedings/p13Rabkin.pdf|target='_blank']
!! More Information
There might be more information for this subject on one of the following:
[{ReferringPagesPlugin before='*' after='\n' }]
----
* [#1] - [The definitive guide to form-based website authentication|http://stackoverflow.com/questions/549/the-definitive-guide-to-form-based-website-authentication|target='_blank'] - based on information obtained 2016-08-10
This page (revision-1) was last changed on 29-Nov-2024 16:16 by UnknownAuthorTop