Talks
Speakers
Events
Topics
Sign in
Home
Talks
Speakers
Events
Topics
Leaderboard
Use
Analytics
Sign in
Suggest modification to this talk
Title
Description
A talk from RubyConfTH 2023, held in Bangkok, Thailand on October 6-7, 2023. Find out more and register for updates for our next conference at https://rubyconfth.com/
Date
Summarized using AI?
If this talk's summary was generated by AI, please check this box. A "Summarized using AI" badge will be displayed in the summary tab to indicate that the summary was generated using AI.
Show "Summarized using AI" badge on summary page
Summary
Markdown supported
In this talk at RubyConf TH 2023, Helio Cola introduces the concept of Passkeys as a modern solution to password security. Passkeys serve as a replacement for traditional passwords, leveraging public and private key cryptography for secure authentication without the need to remember or type in passwords. The session begins with an overview of what Passkeys are, followed by a deeper dive into how they function and their advantages over passwords. Here are the key points discussed in the presentation: - **Definition of Passkeys**: Passkeys are a secret stored on a device, unlocked with biometrics, that aim to reduce reliance on traditional passwords. - **Technology Underpinning Passkeys**: They utilize public key encryption and challenge-based authentication, ensuring a secure verification process without revealing private information. - **Historical Context**: The web authentication standard was first drafted in 2016, with contributions from major firms such as Microsoft, PayPal, and Google, highlighting the collaboration in developing Passkeys. - **Authentication Process**: The user creates a Passkey that involves generating a public/private key pair, validated through biometric data, allowing for secure data encryption and identity verification. - **User Experience**: The signup and login process for Passkeys is streamlined and user-friendly, requiring only biometric input, thus enhancing accessibility while maintaining robust security. - **Security Features**: Unlike traditional systems where critical authentication information is stored, in a Passkey system, even if a database is compromised, users’ private keys remain secure and inaccessible. - **Demo Presentation**: Cola demonstrates a Rails application using Passkeys, showing the ease of account creation and the reassignment of sensitive information through biometric authentication. - **Future of Passkeys**: The discussion includes the potential for device-bound Passkeys, emphasizing the balance between security and accessibility—where cloud-synced Passkeys offer convenience when devices are changed or lost. - **Ruby Community Contributions**: The speaker acknowledges the Ruby community's role in the evolving landscape of Passkeys, highlighting contributions from influential members who have advanced authentication technologies. Overall, the talk emphasizes the future potential of Passkeys as a more secure, user-friendly alternative to conventional passwords, reflecting on current industry practices and the ongoing innovations within the Ruby community. Helio Cola expresses excitement about the evolution of this technology and encourages the audience to explore it further.
Suggest modifications
Cancel
