Identity in the Future of Embeddables & Wearables

•

6 likes•2,332 views

The audio recording of this talk is available at https://archive.org/details/identity_wearables_embeddables Ways of identifying a person to the technology around them is shifting from antiquated external body definitions, to internal body functions. In this session, we'll explore how the technology behind this embeddable and wearable movement works, exploring vein recognition biometrics, heartbeat identification, and going into embeddable body modifications as sources of identification.

Technology

Identity in the Future of
Embeddables and Wearables
Jonathan LeBlanc (@jcleblanc)
Head of Global Developer
Advocacy at PayPal + Braintree

Why do we need this?
Passwords are awesome!
twitter: @jcleblanc | hashtag: #confoo

1.  123456
2.  password
3.  12345678
4.  qwerty
5.  abc123
6.  123456789
7.  111111
8.  1234567
9.  iloveyou
10. adobe123
11. 123123
12. admin
13. 1234567890
14. letmein
15. photoshop
16. 1234
17. monkey
18. shadow
19. sunshine
20. 12345
Top Passwords of 2014
twitter: @jcleblanc | hashtag: #confoo

4.7% of users have the password password;
8.5% have the passwords password or 123456;
9.8% have the passwords password, 123456 or
12345678;
14% have a password from the top 10 passwords
40% have a password from the top 100 passwords
79% have a password from the top 500 passwords
91% have a password from the top 1000 passwords
Poor Password Choices
twitter: @jcleblanc | hashtag: #confoo

Use Another Site Login
Mixed OAuth 2 / OpenID
Connect for auth
Roll Your Own
Username / Password
Fingerprint Scanning
State of Developer Auth
twitter: @jcleblanc | hashtag: #confoo

Location Awareness
Habit Awareness
Browser Uniqueness
Device Fingerprinting
There’s more to it
twitter: @jcleblanc | hashtag: #confoo

What Technology was
Supposed to be
twitter: @jcleblanc | hashtag: #confoo

Wearables are
Becoming Invisible
twitter: @jcleblanc | hashtag: #confoo

Tools of the Trade
twitter: @jcleblanc | hashtag: #confoo

Microcontrollers
twitter: @jcleblanc | hashtag: #confoo

Transmitters
twitter: @jcleblanc | hashtag: #confoo

Sensors
twitter: @jcleblanc | hashtag: #confoo

Beyond the Fingerprint
twitter: @jcleblanc | hashtag: #confoo

False negative: Valid
user can’t log in
False positive: Invalid
user can log in
False Positive /
Negative Rates
twitter: @jcleblanc | hashtag: #confoo

Retina Identification
twitter: @jcleblanc | hashtag: #confoo

Vein Recognition
Biometrics
twitter: @jcleblanc | hashtag: #confoo

EKG Monitoring (Nymi)
twitter: @jcleblanc | hashtag: #confoo

Attachable Computers
twitter: @jcleblanc | hashtag: #confoo

Tiny IoT Microcontroller
twitter: @jcleblanc | hashtag: #confoo

The FIDO Alliance
http://fidoalliance.org/
twitter: @jcleblanc | hashtag: #confoo

Embeddable Technology
twitter: @jcleblanc | hashtag: #confoo

DNA Data Storage
twitter: @jcleblanc | hashtag: #confoo

DNA Long Term Storage
twitter: @jcleblanc | hashtag: #confoo

Remote Controlled
Contraceptive
twitter: @jcleblanc | hashtag: #confoo

Improving Prosthetics
twitter: @jcleblanc | hashtag: #confoo

Brain Chip Implants
twitter: @jcleblanc | hashtag: #confoo

Bio Hacking
twitter: @jcleblanc | hashtag: #confoo

Ingestible Technology
twitter: @jcleblanc | hashtag: #confoo

Glucose Detection (Diabetes)
Blood Pressure Monitoring
Digestive Health (Camera)
Medication Levels
Medical Ingestibles
twitter: @jcleblanc | hashtag: #confoo

Daily ID Chips
twitter: @jcleblanc | hashtag: #confoo

Your Body as the ID
twitter: @jcleblanc | hashtag: #confoo

The Future?
twitter: @jcleblanc | hashtag: #confoo

Thank You!
Jonathan LeBlanc (@jcleblanc)
Head of Global Developer
Advocacy at PayPal + Braintree

You have a solid security infrastructure, all user data is encrypted, your users are protected right? As long as passwords remain the standard methods for identifying your users on the web, people will still continue to use "letmein" or "password123" for their secure login, and will continue to be shocked when their accounts become compromised. Passwords are not secure, they need to be replaced. In this talk we're going to explore the pitfalls of a system designed around a username and password, then dive into the ways that technology is giving us a slew of new ways to build a secure user identity system. From biometrics to wearables, hardware to tokens, we'll explore a multitude of ways that we can finally kill all passwords.

Mobile Authentication using Biometrics & Wearables

Jonathan LeBlanc

Have you ever had to implement a client- or server-side authentication system and actually enjoyed it? Did you ever notice the wide landscape of mechanisms that seem to be complementary but are in fact hard to combine? As we move towards mobile-centric technology and wearables, this landscape becomes even more difficult to navigate. Centralized group and identification mechanisms are starting to rise to fill this need, building out standards for how authentication should be implemented on emerging technology and devices. As these areas develop, the need for new security measures is also becoming paramount. Come and join Jon Leblanc and Tim Messerschmidt from PayPal to learn about how identification, through biometrics, is being used to build the future of mobile centric devices and technology, breaking into the world of wearables. We’ll look at the security behind this technology, and see where the future of biometrics is leading us.

Digital design pp

JeremyRobinson49

E-safety

mohamed selim

Many security research reports show that phishing is significant contributing factor to data breaches. Verizon data breach investigations report (DBIR) shows that attackers used phishing as their entry point in two third of the security incidents, especially in cyber espionage category. Although the phenomenon of phishing is nothing new, the attackers are enhancing their techniques and using phishing more effectively. The good news is that understanding the phishing attack chain helps in stopping these attacks, break the phishing chain, and avert a data breach. This session is to understand different phases of phishing attacks and developing a comprehensive strategy to manage risk associated with these attacks.

Webinar: Personal Online Privacy - Sucuri Security

Sucuri

Like what you see? Hit the like button so we know to make more :) Stay ahead of emerging threats. Sign up to receive technical information about current security issues, vulnerabilities, and exploits. Click to Subscribe: https://bit.ly/2KP2pei Victor Santoyo: In this webinar, we’ll describe action items that can improve the security state of internet-connected devices we all use every day. These devices will include common household staples such as: WiFi Routers, iOS/Android devices, and personal computers. We’ll also cover improvements to items such as 2FA, browser add-ons, and other such considerations. Follow #SucuriSecurity Instagram: https://www.instagram.com/sucurisecur... Twitter: https://twitter.com/sucurisecurity Facebook: https://www.facebook.com/SucuriSecurity/

Webinar Worst-Case Scenario Survival Training

Adam Arents

世界標準パブリッシングプラットホーム WordPress

Naoko Takano

Paul Madden Frokostseminar Slides

LinkRisk

Nerino Petro - Protecting your Digital ASSets: What we can learn from recent ...

Clio - Cloud-Based Legal Technology

Sucuri Webinar: Defending Your Google Brand Reputation and Analytics Reports

Sucuri

Sucuri Webinar: How Caching Options Can Impact Your Website Speed

Sucuri

When a website is accessed, the server usually needs to compile the website code, display the end result and provide the visitor with all the website's assets. This all takes a toll on your server resources, slowing down the total page load time and increasing the chances of a small DDoS attack bringing it down. To avoid this overhead, it's necessary to leverage certain types of caching whenever possible. This webinar is for beginners and web professionals to learn about the three most used caching types in practice: Static Files caching, Page Caching, and In-Memory Caching.

Sucuri Webinar: How to identify and clean a hacked Joomla! website

Sucuri

Article18egrowtech

Assure2ruba123

Working Off Grid & Remote

travistotz

The world is full of amazing things, and if you’re like me you would like to see as much of this beautiful planet as possible. The existence of the Internet has made working off grid a real possibility for people. During my talk I will discuss my experience running a WordPress business while being “off-grid”, the types of products that make this lifestyle a possibility, and the challenges that come along with it.

Understanding Instagram's Algorithm

Chloë Forbes-Kindlen

How to See People Who Block You on Twitter

Bernard Goldbach

How to do well in Bug bounty programs. Presentation at @nullhyd by Abhijeth

Abhijeth D

Sucuri Webinar: Website Security Primer for Digital Marketers

Sucuri

Sucuri Webinar: How to Clean a Hacked Magento Website

Sucuri

TIP: Make sure you scroll to the last slide to view the video recording. On Feb 22, 2017, Sucuri Incident Responder, Cesar Anjos, presented this webinar as a step by step guide on how to clean a hacked Magento website. If your Magento website has been hacked, learn how to appropriately deal with the security incident, fix the hack, and secure your ecommerce website against future breaches. This webinar will take place on Wednesday, Feb 22nd at 11am PST. Following his presentation, Cesar will take questions from participants. Please complete the form to register. In this webinar you will learn how to: - Understand if there has been a compromise - Beginner - Determine the presence of credit card stealers - Intermediate/Advanced - Look for the most common credit card stealers - Intermediate - Handle potential data breaches - Intermediate - Remove most Magento infections - Beginner

Dangers of social media

TheMightyNuggets

ES6 at PayPal

Jamund Ferguson

2012 Internal Hackathon: PayPal Access

Jonathan LeBlanc

Maximizing PayPal's New Identity Services to Create Seamless and Safe User Ex...

PayPalX Developer Network

Outsourcing identity-related services—such as customer authentication—to PayPal could speed your application development, save you the hassle of dealing with password resets, and give your customers a shorter and easier path to purchases. An authentication service is just one example of the identity services we've got planned. Come learn how all of them can improve business opportunities and enhance user experiences.

PayPal Identity Services - Innovate 2010

Ashish Jain

What's hot

Rafeeq Rehman - Breaking the Phishing Attack Chain

centralohioissa

Webinar: Personal Online Privacy - Sucuri Security

Sucuri

Webinar Worst-Case Scenario Survival Training

Adam Arents

世界標準パブリッシングプラットホーム WordPress

Naoko Takano

Paul Madden Frokostseminar Slides

LinkRisk

Nerino Petro - Protecting your Digital ASSets: What we can learn from recent ...

Clio - Cloud-Based Legal Technology

Sucuri Webinar: Defending Your Google Brand Reputation and Analytics Reports

Sucuri

Sucuri Webinar: How Caching Options Can Impact Your Website Speed

Sucuri

Sucuri Webinar: How to identify and clean a hacked Joomla! website

Sucuri

Article18egrowtech

Assure2ruba123

Working Off Grid & Remote

travistotz

Understanding Instagram's Algorithm

Chloë Forbes-Kindlen

How to See People Who Block You on Twitter

Bernard Goldbach

How to do well in Bug bounty programs. Presentation at @nullhyd by Abhijeth

Abhijeth D

Sucuri Webinar: Website Security Primer for Digital Marketers

Sucuri

Sucuri Webinar: How to Clean a Hacked Magento Website

Sucuri

Dangers of social media

TheMightyNuggets

What's hot (18)

Rafeeq Rehman - Breaking the Phishing Attack Chain

Webinar: Personal Online Privacy - Sucuri Security

Webinar Worst-Case Scenario Survival Training

世界標準パブリッシングプラットホーム WordPress

Paul Madden Frokostseminar Slides

Nerino Petro - Protecting your Digital ASSets: What we can learn from recent ...

Sucuri Webinar: Defending Your Google Brand Reputation and Analytics Reports

Sucuri Webinar: How Caching Options Can Impact Your Website Speed

Sucuri Webinar: How to identify and clean a hacked Joomla! website

Article18

Assure2

Working Off Grid & Remote

Understanding Instagram's Algorithm

How to See People Who Block You on Twitter

How to do well in Bug bounty programs. Presentation at @nullhyd by Abhijeth

Sucuri Webinar: Website Security Primer for Digital Marketers

Sucuri Webinar: How to Clean a Hacked Magento Website

Dangers of social media

Viewers also liked

ES6 at PayPal

Jamund Ferguson

2012 Internal Hackathon: PayPal Access

Jonathan LeBlanc

Maximizing PayPal's New Identity Services to Create Seamless and Safe User Ex...

PayPalX Developer Network

PayPal Identity Services - Innovate 2010

Ashish Jain

Future of Identity, Data, and Wearable Security

Jonathan LeBlanc

In a world where technology is transforming with mobile devices and wearables, its key to have a solid security backbone. From having a strong password to using biometrics, companies are finding ways to help consumers protect themselves without impacting the experience. We'll take a look at the current landscape of passwords, the importance of proper systems and how we can use wearables and mobile devices to build trust systems.

The Future of Using Money

Jonathan LeBlanc

The audio for this presentation is available at https://archive.org/details/future_of_using_money The lines between online and office commerce have completely blurred into a new age of connected commerce, and mobile technologies have risen to become the central point of that digital revolution. These changes in the mindset behind how we shop have simplified entrepreneurship within the physical space, and have streamlined the digital world to the point where the wallet is a dying necessity. In this session, we will delve into the technology that is driving the new age of commerce, and how new architectural models for buying and selling are becoming the new standard, including: - The specifications behind how bluetooth low energy (BLE) technology is being used to create on-demand popup shops, facilitating commerce between any bluetooth connected devices. - How open identity technology is being used as an instigator of commerce. - Case studies on the ways mobile has changed the traditional ways we shop.

Trust But Control: Managing Privileges without killing productivity

Scott Carlson

Creating a User-Centric Mobile Payment Architecture

Jonathan LeBlanc

Payment architectures are no longer flat experiences that are static for all users. Mobile experiences have become personalized, providing an identity infrastructure to promote payment ease for users. Through the lessons learned from a mobile first PayPal product overhaul, we'll explore how identity and in-app purchasing coalesce to create a scalable mobile payment infrastructure, looking into how building cross-platform payment personalization increasing user ease and revenue.

Modern API Security with JSON Web Tokens

Jonathan LeBlanc

Building a modern API architecture is a constant struggle between ease of development and security. JSON Web Tokens (JWTs) introduce a means of building authentication into JSON objects being transmitted through APIs. In this session we’ll explore how JWTs work to build verifiable and trusted objects, allowing them to be combined with standards such as OAuth 2 for capturing access tokens, leading to a secure means of JavaScript SDK dev.

Hackathon winning pitch

Anand Inbasekaran, MBA, B.Tech, TOGAF

The Future of Mobile Payments

Jonathan LeBlanc

Mobile devices are becoming a central point for the future of hardware and technology that is enabling commerce in the online and offline world. Being the enabler between body monitoring identification systems, wearable pairing, and merchant-based hardware and software, mobile hardware is becoming the most important central piece of technology towards the future of commerce. As we look into the technology that is enabling this next stage of mobile commerce growth, we’ll explore the identification systems, hardware prototypes, digital currencies, and open technology that is becoming an accessory to this new mobile payments world.

Viewers also liked (11)

ES6 at PayPal

2012 Internal Hackathon: PayPal Access

Maximizing PayPal's New Identity Services to Create Seamless and Safe User Ex...

PayPal Identity Services - Innovate 2010

Future of Identity, Data, and Wearable Security

The Future of Using Money

Trust But Control: Managing Privileges without killing productivity

Creating a User-Centric Mobile Payment Architecture

Modern API Security with JSON Web Tokens

Hackathon winning pitch

The Future of Mobile Payments

Similar to Identity in the Future of Embeddables & Wearables

Protecting the Future of Mobile Payments

Jonathan LeBlanc

Audio from the session at OSCON (Portland, OR) on July 22nd, 2015 is available at https://archive.org/details/protecting_future_mobile_payments We are now in an age where more people have phones than toilets, and there are more active cell phones than people on the planet. How do we protect all of these devices as they’re roaming around unsecured locations, especially when we want to pay for something. In this talk we’re going to rip apart the illusion of mobile security and explore some of the most difficult to secure experiences: payments. We’ll cover the concepts of building a rich feature set to protect the user, how to encrypt all interactions, building scalable trust zones, and extending identification with wearables and biometrics.

Death To Passwords

PayPal

JavaScript and Internet Controlled Hardware Prototyping

All Things Open

JavaScript and Internet Controlled Hardware Prototyping (Now with more Node G...

Jonathan LeBlanc

The electronics maker movement has led a massive shift in how people are re-engineering the world around them through rapid hardware prototyping. With the rise of inexpensive, wifi and bluetooth low energy enabled electronics, this hardware revolution is internet and mobile controlled, all through simple bridges to build the electronics intelligence in familiar web languages. In this session, we will play with Arduino microcontrollers and JavaScript to take a first dive into the world of internet controlled electronics, exploring topics such as: - Setting up an Arduino to be controlled through web APIs - Using JavaScript language bridges on the Arduino - The future of web controlled hardware prototyping

7 Ways the Social Web is Changing the World

Tara Hunt

DIGITAL FOOTPRINTS

Oodit Jethwa

How Consumers Engage with Mobile Apps

SIXTY

Slide share sexy email event gianfranco cuzziol 210611Michael Straathof

Habits of High Growth Companies

Conductor

Joanna Lord, CMO of ClassPass, will cover how to organize your teams and company for accelerated growth. She’ll cover how to introduce experimentation across stakeholders, who to hire and what processes to leverage to make sure you’re maximizing across all cylinders to dominate the competition. Additionally, she’ll walk through common best practices from some of the fastest growing companies so you can understand what makes them stand out and ultimately win. Presentation by: Joanna Lord - CMO, ClassPass

10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED

Human Capital Media

Wouldn’t you like to know the future of staffing software? Of course, you would — and by attending this webinar you’ll learn the 10 most critical trends in staffing tech. By understanding these trends and what’s driving them, you’ll make better staffing technology purchases. Staffing tech isn’t rocket science, but technology advancements are moving quite fast. Our three goals for this session are that you’re aware, you understand and you’re confident about the immediate future of staffing tech. During this session, you will learn about: Get a full map of the current HCM software market. Find out the 10 staffing tech trends you’ll need to watch. Understand how evolving staffing tech will affect your work.

Death To Passwords

Tim Messerschmidt

Death To Passwords Droid Edition

PayPal

How to Promote and Sell Your Mobile App

SIXTY

Impact of digital technology

Tahsin Bushra

Death to Passwords

Cristiano Betta

21 Ways to Awesome-ize Your Mobile Toolkit

Jeremy Caplan

Make the mobile device in your pocket more magical! In this digital guide, we'll explore some of the handy gear and apps that make smartphones and tablets more powerful and fun to use. The focus here is on resources for mobile media creation, editing and publishing. This is a living doc, so it may be updated as new tools surface. For the full set of presentation materials and links, visit http://bit.ly/ninjamobile

#CNX14 - 7 Technology Trends Transforming Customer Communication

Salesforce Marketing Cloud

Technology trends are important to any business because they define the next generation of marketing and consumer strategy. We’ll focus on the quickly evolving communication landscape and the impacts of increased consumer mobility, localization, smart machines, and the power of social. Based on six years of extensive research of over 10,000 global consumers, we've discovered seven trends that will be changing your business in the years to come. The session will equip you with the knowledge needed to understand and use tools to build a successful brand.

Working Women of Dallas Social Media Panel

Lisa DuBois Low

Wild Apricot Expert Webinar: 5 Ways Nonprofits are Actually Attracting New Me...

Wild Apricot

If you are spending a ton of time promoting your organization on social media without getting any real results, you’re not alone — many organizations struggle with this. That’s why we’re bringing in nonprofit social media expert and author Julia Campbell for our webinar on August 21. In this session, Julia will reveal exactly how small and mid-sized nonprofits are attracting new members through social media. In this free webinar, you will learn: - 7 common pitfalls that make your social updates less effective, and what to do instead - The real strategies that nonprofits use to find success through social media - A simple process to create engaging content on social media that your members and donors will love

Webinar - 10 Tactical Tips for #GivingTuesday - 2015-09-03

TechSoup

Visit http://www.techsoup.org for donated technology for nonprofits and libraries! Three years ago, the 92 Street Y in NYC and the United Nations Foundation joined forces to create #GivingTuesday, a one-day annual movement focused on charitable giving. #GivingTuesday is just around the corner on December 1, 2015 and more than 30,000 organizations are engaged worldwide. This year, how do you take advantage of this day of giving? The challenge is using the right tactics to drive awareness and donations to your campaign. Learn ten proven tactics that can make your #GivingTuesday campaign a success. Hear from our partner organization, CauseVox, on #GivingTuesday best practices and tactical tips that you can implement for your campaign this fall.

Similar to Identity in the Future of Embeddables & Wearables (20)

Protecting the Future of Mobile Payments

Death To Passwords

JavaScript and Internet Controlled Hardware Prototyping

JavaScript and Internet Controlled Hardware Prototyping (Now with more Node G...

7 Ways the Social Web is Changing the World

DIGITAL FOOTPRINTS

How Consumers Engage with Mobile Apps

Slide share sexy email event gianfranco cuzziol 210611

Habits of High Growth Companies

10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED

Death To Passwords

Death To Passwords Droid Edition

How to Promote and Sell Your Mobile App

Impact of digital technology

Death to Passwords

21 Ways to Awesome-ize Your Mobile Toolkit

#CNX14 - 7 Technology Trends Transforming Customer Communication

Working Women of Dallas Social Media Panel

Wild Apricot Expert Webinar: 5 Ways Nonprofits are Actually Attracting New Me...

Webinar - 10 Tactical Tips for #GivingTuesday - 2015-09-03

More from Jonathan LeBlanc

JavaScript App Security: Auth and Identity on the Client

Jonathan LeBlanc

The story is always the same; if you want to create a JavaScript centric app with API and identity security, you’re told that you need to have a server-side component for handling your identity and application security. That’s simply not the case in modern development. In this session we'll look at client-side identity, API, and token security, exploring token downscoping methodologies, key management tools, and security on the client.

Improving Developer Onboarding Through Intelligent Data Insights

Jonathan LeBlanc

A developer platform lives and dies by it's developer community. When huge problems need to be solved, it's easy to make valuable improvements, but what do you do when those are solved and you still see high bounce rates on your site, low developer application completion, and generally poor adoption of your product? This is where your data can save you. In this talk we'll run through: - How to track valuable developer path insights, from moments of anxiety to time to first valuable call. - Overlaying support and ticketing information on top of developer path data to decrease developer friction. - How to create automated analytics systems to measure success. - When these systems should be built, before it's too late.

Better Data with Machine Learning and Serverless

Jonathan LeBlanc

Creating valuable insights out of raw data files, such as audio or video, has traditionally been a very manual and tedious process, and has produced mixed results due to an influential human element in the mix. Thanks to enhancements in machine learning systems, coupled with the rapidly deployable nature of serverless technology as a middleware layer, we are able to create highly sophisticated data insight platforms to replace the huge time requirements that have typically been required in the past. With this in mind, we’ll look at: - How to build end-to-end data insight and predictor systems, built on the back of serverless and machine learning systems. - Best practices for working with serverless technology for ferrying information between raw data files and machine learning systems through an eventing system. - Considerations and practical examples of working with the security implications of dealing with sensitive information.

Best Practices for Application Development with Box

Jonathan LeBlanc

Box Platform Overview

Jonathan LeBlanc

Box Platform Developer Workshop

Jonathan LeBlanc

Modern Cloud Data Security Practices

Jonathan LeBlanc

This topic will go through current standards and future trends for building a scalable security model for distributed cloud based data. We’ll look into practices and considerations behind handing highly privileged data globally, diving into topics such as: - How global compliance and regulations affect security practices. - Handling data permissions, identity, and security with application access to data. - Considerations, trends, and standards for global data availability.

Box Authentication Types

Jonathan LeBlanc

Understanding Box UI Elements

Jonathan LeBlanc

Understanding Box applications, tokens, and scoping

Jonathan LeBlanc

The Future of Online Money: Creating Secure Payments Globally

Jonathan LeBlanc

Creating an In-Aisle Purchasing System from Scratch

Jonathan LeBlanc

The future of retail is in removing the divide between the offline shopping state and the enhanced online buying experience. To create this type of enhanced retail experience, we can remove complexities in the process, such as simplifying checkout. In this session we’ll learn how to use internet-connected microelectronics to attach to a buyer’s mobile device to provide the functionality to buy products right from the aisle.

Secure Payments Over Mixed Communication Media

Jonathan LeBlanc

As web enabled systems become an integral part of everything we interact with, how do we secure data in potential unsecure environments? In this session you'll learn how to apply fundamental security precepts in potentially insecure environments. Topics include: Securing identity and payment data through voice commands or text Tokenization and encryption security Triggering secure transactions from communications media

Protecting the Future of Mobile Payments

Jonathan LeBlanc

We are in an age where more people have phones than toilets, and there are more active cell phones than people on the planet. How do we protect all of these devices roaming around unsecured locations, especially when they want to pay for something. Learn the secrets behind building a secure mobile backbone, as we explore how to harden security, build systems based on identity confidence, and work towards a future proofed mobile framework.

Node.js Authentication and Data Security

Jonathan LeBlanc

The arena of proper auth & data security standards is often some of the most misunderstood, confusing, and tricky aspects of building Node apps. Using open source auth techniques and proper data encryption standards, we’ll learn how to make intelligent decisions on creating a solid infrastructure to protect our users and data. We’ll dive into auth systems, data attack vectors, how to protect your systems, and common security pitfalls in Node.

PHP Identity and Data Security

Jonathan LeBlanc

The screencast of this presentation can be found at https://youtu.be/o3uy7dgG_n4 There is an assumption in the industry, amongst companies large and small alike, that if they store sensitive user data (and sometimes do some mild encryption) in their database, it's locked in and secured from potential attacks. People rely too heavily on their false assumptions of security, and it usually ends up costing them extensively when that is proven wrong. In this session, Jonathan will build a foundation for identity and data security that everyone dealing with sensitive data should understand. We'll break down concepts of identity security, common attack vectors and how to protect yourself, and how to harden your web application.

Secure Payments Over Mixed Communication Media

Jonathan LeBlanc

Web enabled systems are now an integral part of everything we interact with, from microelectronics to voice enabled hardware, from text messages and phone calls to email, and really we’re just limited by our imaginations as to what we can connect. As we explore vast new realms of communication over mixed digital media, we have to ask ourselves how we protect our critical data within potential unsecure environments. Going beyond that, how do we protect some of our more critical data, payment information, in this same realm. As we look at a multitude of different environments, we’ll be exploring how to secure user identity and payment information through the communication channels, covering topics like: * Securing identity and payment data through voice commands or text. * Tokenization and encryption security. * Techniques for triggering secure transactions from communications media. At the end of the session, we’ll have a stronger understanding of proper techniques for working with new communication media sources, and see how we can apply fundamental security precepts in potentially insecure environments.

BattleHack Los Angeles

Jonathan LeBlanc

Building a Mobile Location Aware System with Beacons

Jonathan LeBlanc

Audio from talk (OSCON - July 22nd, 2015): https://archive.org/details/oscon_mobile_location_aware_systems_with_beacons What if instead of a broad location, you could have pinpoint location awareness of someone in a physical space. How could this change everything about how we interact with the physical world? In this session we will be exploring Beacon technology, which enables this, the underlying Bluetooth Smart standard, and how we can use these systems to change everything from shopping, to accessibility for the disabled, all built on top of a mobile device.

Internet Security and Trends

Jonathan LeBlanc

More from Jonathan LeBlanc (20)

JavaScript App Security: Auth and Identity on the Client

Improving Developer Onboarding Through Intelligent Data Insights

Better Data with Machine Learning and Serverless

Best Practices for Application Development with Box

Box Platform Overview

Box Platform Developer Workshop

Modern Cloud Data Security Practices

Box Authentication Types

Understanding Box UI Elements

Understanding Box applications, tokens, and scoping

The Future of Online Money: Creating Secure Payments Globally

Creating an In-Aisle Purchasing System from Scratch

Secure Payments Over Mixed Communication Media

Protecting the Future of Mobile Payments

Node.js Authentication and Data Security

PHP Identity and Data Security

Secure Payments Over Mixed Communication Media

BattleHack Los Angeles

Building a Mobile Location Aware System with Beacons

Internet Security and Trends

Recently uploaded

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

BookNet Canada

The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more. Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/ Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

UiPathCommunity

💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™: See how to accelerate model training and optimize model performance with active learning Learn about the latest enhancements to out-of-the-box document processing – with little to no training required Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath. Speakers: 👨‍🏫 Andras Palfi, Senior Product Manager, UiPath 👩‍🏫 Lenka Dulovicova, Product Program Manager, UiPath

How world-class product teams are winning in the AI era by CEO and Founder, P...

Product School

PHP Frameworks: I want to break free (IPC Berlin 2024)

Ralf Eggert

In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development. This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Product School

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

UiPath Test Automation using UiPath Test Suite series, part 3

DianaGray10

Leading Change strategies and insights for effective change management pdf 1.pdf

OnBoard

Designing Great Products: The Power of Design and Leadership by Chief Designe...

Product School

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

"Impact of front-end architecture on development cost", Viktor Turskyi

Fwdays

I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.

Accelerate your Kubernetes clusters with Varnish Caching

Thijs Feryn

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

Product School

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

Inflectra

In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring. Learn about: • The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks. • Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective. • Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification. • Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process. Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

Thierry Lestable

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

FIDO Alliance

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

Prayukth K V

The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development. The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers: State of global ICS asset and network exposure Sectoral targets and attacks as well as the cost of ransom Global APT activity, AI usage, actor and tactic profiles, and implications Rise in volumes of AI-powered cyberattacks Major cyber events in 2024 Malware and malicious payload trends Cyberattack types and targets Vulnerability exploit attempts on CVEs Attacks on counties – USA Expansion of bot farms – how, where, and why In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East Why are attacks on smart factories rising? Cyber risk predictions Axis of attacks – Europe Systemic attacks in the Middle East Download the full report from here: https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

Product School

Recently uploaded (20)

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

How world-class product teams are winning in the AI era by CEO and Founder, P...

PHP Frameworks: I want to break free (IPC Berlin 2024)

De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...

Essentials of Automations: Optimizing FME Workflows with Parameters

UiPath Test Automation using UiPath Test Suite series, part 3

Leading Change strategies and insights for effective change management pdf 1.pdf

Designing Great Products: The Power of Design and Leadership by Chief Designe...

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

"Impact of front-end architecture on development cost", Viktor Turskyi

Accelerate your Kubernetes clusters with Varnish Caching

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf

State of ICS and IoT Cyber Threat Landscape Report 2024 preview

The Art of the Pitch: WordPress Relationships and Sales

AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...

Identity in the Future of Embeddables & Wearables

1. Identity in the Future of Embeddables and Wearables Jonathan LeBlanc (@jcleblanc) Head of Global Developer Advocacy at PayPal + Braintree

2. Why do we need this? Passwords are awesome! twitter: @jcleblanc | hashtag: #confoo

3. 1.  123456 2.  password 3.  12345678 4.  qwerty 5.  abc123 6.  123456789 7.  111111 8.  1234567 9.  iloveyou 10. adobe123 11. 123123 12. admin 13. 1234567890 14. letmein 15. photoshop 16. 1234 17. monkey 18. shadow 19. sunshine 20. 12345 Top Passwords of 2014 twitter: @jcleblanc | hashtag: #confoo

4. 4.7% of users have the password password; 8.5% have the passwords password or 123456; 9.8% have the passwords password, 123456 or 12345678; 14% have a password from the top 10 passwords 40% have a password from the top 100 passwords 79% have a password from the top 500 passwords 91% have a password from the top 1000 passwords Poor Password Choices twitter: @jcleblanc | hashtag: #confoo

5. Use Another Site Login Mixed OAuth 2 / OpenID Connect for auth Roll Your Own Username / Password Fingerprint Scanning State of Developer Auth twitter: @jcleblanc | hashtag: #confoo

6. Location Awareness Habit Awareness Browser Uniqueness Device Fingerprinting There’s more to it twitter: @jcleblanc | hashtag: #confoo

7. What Technology was Supposed to be twitter: @jcleblanc | hashtag: #confoo

8. Wearables are Becoming Invisible twitter: @jcleblanc | hashtag: #confoo

9. Tools of the Trade twitter: @jcleblanc | hashtag: #confoo

10. Microcontrollers twitter: @jcleblanc | hashtag: #confoo

11. Transmitters twitter: @jcleblanc | hashtag: #confoo

12. Sensors twitter: @jcleblanc | hashtag: #confoo

13. Beyond the Fingerprint twitter: @jcleblanc | hashtag: #confoo

14. False negative: Valid user can’t log in False positive: Invalid user can log in False Positive / Negative Rates twitter: @jcleblanc | hashtag: #confoo

15. Retina Identification twitter: @jcleblanc | hashtag: #confoo

16. Vein Recognition Biometrics twitter: @jcleblanc | hashtag: #confoo

17. twitter: @jcleblanc | hashtag: #confoo

18. EKG Monitoring (Nymi) twitter: @jcleblanc | hashtag: #confoo

19. Attachable Computers twitter: @jcleblanc | hashtag: #confoo

20. Tiny IoT Microcontroller twitter: @jcleblanc | hashtag: #confoo

21. The FIDO Alliance http://fidoalliance.org/ twitter: @jcleblanc | hashtag: #confoo

22. Embeddable Technology twitter: @jcleblanc | hashtag: #confoo

23. DNA Data Storage twitter: @jcleblanc | hashtag: #confoo

24. DNA Long Term Storage twitter: @jcleblanc | hashtag: #confoo

25. Remote Controlled Contraceptive twitter: @jcleblanc | hashtag: #confoo

26. Improving Prosthetics twitter: @jcleblanc | hashtag: #confoo

27. Brain Chip Implants twitter: @jcleblanc | hashtag: #confoo

28. Bio Hacking twitter: @jcleblanc | hashtag: #confoo

29. Ingestible Technology twitter: @jcleblanc | hashtag: #confoo

30. Glucose Detection (Diabetes) Blood Pressure Monitoring Digestive Health (Camera) Medication Levels Medical Ingestibles twitter: @jcleblanc | hashtag: #confoo

31. Daily ID Chips twitter: @jcleblanc | hashtag: #confoo

32. Your Body as the ID twitter: @jcleblanc | hashtag: #confoo

33. twitter: @jcleblanc | hashtag: #confoo

34. The Future? twitter: @jcleblanc | hashtag: #confoo

35. Thank You! Jonathan LeBlanc (@jcleblanc) Head of Global Developer Advocacy at PayPal + Braintree

Identity in the Future of Embeddables & Wearables

Recommended

Recommended

More Related Content

What's hot

What's hot (18)

Viewers also liked

Viewers also liked (11)

Similar to Identity in the Future of Embeddables & Wearables

Similar to Identity in the Future of Embeddables & Wearables (20)

More from Jonathan LeBlanc

More from Jonathan LeBlanc (20)

Recently uploaded

Recently uploaded (20)

Identity in the Future of Embeddables & Wearables