Why OpenID Connect is More Secure then Certificates - Marc Boorshtein, Tremolo Security, Inc.

less than 1 minute read

Abstract

Most user’s first experience accessing a cluster usually involves a certificate. It’s one of the most secure ways to authenticate a user, when done properly. It’s not nearly as secure as OpenID Connect for your clusters. In this session you will learn why certificate authentication is a bad idea for your users accessing your clusters and why you should be using OpenID Connect. In addition to showing why OpenID Connect is the more secure method for accessing your clusters, the session will detail the OpenID Connect threat model and how to mitigate it. The session will also contrast this model with certificates and show how it’s nearly impossible to create an authentication system with certificates as secure as one protected with OpenID Connect. There will also be a chance for those attending to try to take over an OpenID Connect protected cluster!

Sched URL

Video

Twitter Facebook LinkedIn

About

Conferences

Why OpenID Connect is More Secure then Certificates - Marc Boorshtein, Tremolo Security, Inc.

Abstract

Video

You May Also Enjoy

You Shall Not Pass! Unless You Are GUAC Verified…. - Parth Patel, Kusari & Dejan Bosanac, Red Hat

Living off the Land Techniques in Managed Kubernetes Clusters - Ronen Shustin & Shay Berkovich, Wiz

Leveraging OCI 1.1 for Enhanced SBOM Integration and Vulnerability Scanning in Harbor - Anais Urlichs, Aqua Security & Shengwen Yu, VMware

Lessons Learned from Generating 100M SBOMs: Google’s Approach to SBOM Compliance - Brandon Lum & Isaac Hepworth, Google