Explore a comprehensive analysis of Single Sign-On (SSO) vulnerabilities and learn about the Self-Verifying Authentication (SVAuth) framework in this 57-minute Black Hat conference talk. Discover various SSO bugs that highlight the discrepancies between protocol design, SDK implementation, and website programming. Gain insights into how SVX performs code verification and understand the architecture of the SVAuth code. Watch demonstrations of real-world web applications utilizing SVAuth to enhance security. Presented by experts Shuo Chen, Shaz Qadeer, Matt McCutchen, Phuong Cao, and Ravishankar Iyer, this talk offers valuable knowledge for developers and security professionals looking to improve SSO integration safety.
Overview
Syllabus
Self-Verifying Authentication – A Framework For Safer Integrations of Single-Sign-On Services
Taught by
Black Hat