I already talked about OpenID (here or here). OpenID is a web based solution which provides single sign-on to other websites: once authenticated via a “provider“, you are able to use a lot of services (websites) via “consumers“. This system is very user-friendly but is also a good target for
Search Results for: openid
OpenID and the Belgian eID
In a previous post, I talked about OpenID: This is a single sign on system for a multitude of websites. To perform my first tests, I installed the OpenID plugin on my WordPress and used an ID created on myopenid.com. It worked pretty well but why not use a strong
OpenID – SSO for the Mass
User authentication is a key component of security practices. To allow certain operations in your websites, you first need to authenticate the user. To achieve this, there are plenty of methods. The most common is the login / password pair. Not the most secure but quite easy to deploy. One
RMLL Security Track 2016 Wrap-Up
I’m in the train from Paris where I attended the RMLL Security Track version 2016. The RMLL or “Rencontres Mondiales du Logiciel Libre” is an annual event around free software. Amongst multiple tracks, there is always one dedicated to information security (around free software of course). The global event was
Hack.lu 2011 (Quick) Wrap Up
Here is my quick wrap up of my visit to hack.lu 2011. For those who do not know me, I’m a BruCON volunteer, busy with the network stuff. This year was very special, due to unforeseen circumstances, both conferences overlapped! BruCON (the talks) were scheduled Monday and Tuesday and Hack.lu
Yubikey Authentication on Linux
In a previous article, I presented the Yubikey product. I also explained why, for security reasons, the usage of two separate Yubikeys could be a plus. One converted to provide a static password and the second left as is (to provide one-time passwords). I received my 2nd Yubikey a few
Protect Your WordPress Blog Using a “Sabre”
I hope it’s not the same for you, but I saw a dramatic increase of false registrations on my blog for a few days (spambots). I decided to take action and search for a solution. WordPress is a blogging system which can be extended by plugins. After some investigations, I
Phone Call Strong Authentication
OpenID is a free service which offers strong authentication to websites (already covered by a previous post). Strong authentication is based on a two factors authentication: something you know, something you have or something you are (more details here). Trustbearer offered strong authentication via, as example, the Belgian eID Card.