Phishing Resistant Passwordless Authentication with Curity and Yubico

Phishing Resistant Passwordless Authentication with Curity and Yubico

Most people will use the same password across many different web apps, making their online accounts vulnerable to attack. For example, if one web app is compromised and passwords leaked, the attacker can access user accounts across many more web apps.

WebAuthn is one of the most robust and secure approaches to authentication available. Yubico has been a driving force in the WebAuthn adoption and the several flavors of its YubiKey is a defacto-standard for phishing resistant authentication.

The Curity Identity Server implements support for WebAuthn out of the box. WebAuthn can easily be configured and a YubiKey associated with a user brings a seamless approach to user authentication without the need for a password.

In this webinar, we will:

  • Discuss why WebAuthn is the leading choice for achieving phishing resistant user authentication and why it is so broadly adopted;

  • Explain what makes WebAuthn the best choice when implementing a secure authentication approach;

  • Show a demo of how to configure and use YubiKey authentication options in OAuth/OIDC flows.

Presented by:

Jonas Iggbom

Jonas Iggbom

Director of Sales Engineering at Curity

David Treece

David Treece

Director, Solutions Architecture at Yubico