Talks
Speakers
Events
Topics
Sign in
Home
Talks
Speakers
Events
Topics
Leaderboard
Use
Analytics
Sign in
Suggest modification to this talk
Title
Description
Passwords are not Enough by: Greg Baugues Every week we hear news of another security breach. We’ve learned that retailers aren’t safe from their HVAC vendors, Seth Rogen can stir an international cybersecurity incident, and not even the venerable OpenSSL can be trusted. If you're concerned about the security of your Rails app but don't feel like you can spare the time or effort to implement two factor authentication, this talk is for you. We'll discuss the best ways to protect your users' accounts and live code the integration of two factor authentication into your Rails app in less than 15 minutes using Authy. Help us caption & translate this video! http://amara.org/v/G61E/
Date
Summarized using AI?
If this talk's summary was generated by AI, please check this box. A "Summarized using AI" badge will be displayed in the summary tab to indicate that the summary was generated using AI.
Show "Summarized using AI" badge on summary page
Summary
Markdown supported
In the video "Passwords are not Enough," presented by Greg Baugues at RailsConf 2015, the urgent need for enhanced security measures in digital applications is explored, particularly through the implementation of two-factor authentication (2FA). Baugues emphasizes that even well-known companies can fall victim to security breaches, citing examples such as a high-profile Twitter incident involving a tech journalist whose accounts were compromised due to inadequate security measures. Key points discussed include: - **Definition of Two-Factor Authentication**: Baugues explains that 2FA adds an extra layer of security by requiring not just a password but also a second factor, typically a code sent to a user’s phone. - **Real-world Security Breaches**: He points out that significant security incidents, including breaches involving companies like Slack, underline the necessity for robust security practices among developers. - **The Role of Authy**: Following an acquisition, Twilio has teamed up with Authy to provide seamless 2FA integration into applications, making it easier for developers to enhance their app's security. - **Demonstration of Implementation**: Baugues provides a live coding session that showcases how to integrate Authy within a Rails application in less than 20 minutes, highlighting the ease of use and effectiveness. - **User Education**: He encourages developers and consumers to utilize password managers and check for compromised accounts through services like "Have I Been Pwned?" to bolster personal security. Baugues concludes with a strong admonition for developers to prioritize the implementation of two-factor authentication to protect user data and trust. He argues that the minor effort required to implement 2FA is minimal compared to the potential damage caused by security breaches, which can lead to loss of user trust and potential lawsuits. His final message is a call-to-action for all developers to take the necessary steps to fortify their applications against evolving security threats.
Suggest modifications
Cancel
