Authentication is scary, difficult, dangerous, and… essential. Most apps need some form of it, often as a prerequisite for almost all end-user requests.
This is a fresh and practical perspective on authentication architecture for the modern, open web, using modern standards like WebAuthn.
Showcasing a passwordless authentication layer that's fast, distributed, secure, isolated from the rest of your system, and minimally annoying to integrate and maintain.
3. adjective • informal • /zen/
Relaxed and unconcerned about things beyond one's control.
zen
4. noun • hot topic • /edʒ kəmˈpjuː.tɪŋ/
Bringing computation and data as close as possible to
where it is needed.*
edge [computing] large-scale, coordination free.
.distributed systems ✨
5. noun • hot topic • /edʒ kəmˈpjuː.tɪŋ/
Bringing computation and data as close as possible to
where it is needed.*
* while retaining control of the environment
edge [computing] large-scale, coordination free.
.distributed systems ✨
at the network’s edge.
6. noun • /ɑːˌθen.t̬əˈkeɪ.ʃən/
The process of verifying the identity of a person or device.
authentication secure.
login flows ✨
35. user client server (RP) authenticator
get authentication
options
🙏 sign in
with passkey
options +
random challenge
{ o7Hr4N60m… }
36. user client server (RP) authenticator
verify user
sign challenge +
get credentials
sig:o7Hr… credentialId
navigator.credentials.get( )
{ o7Hr4N60m… }
37. user client server (RP) authenticator
signed in 🎉
sig:o7Hr…
credentialId
verify signature +
sign in
38. photo by Moja Msanii on Unsplash
p w n e d?
have u been
39. photo by Moja Msanii on Unsplash
p w n e d?
have u been
nope
no more