Photo

What the @#!? is Auth

Warren Parad

from Authress (Switzerland)

About speaker

CTO and Security Specialist @ Authress

Warren focuses on technology that helps teams automate security implementations. He has journeyed through many different locations, technologies, and industries from Health Care IT in Wisconsin to E-Commerce in Switzerland.

About speakers company

Authress provides the complete authentication and authorization solution to easily drop into the software you're building. It enables login integration, fine grained control over the permissions, api keys as a service, secure identities, and everything else to solve identity for your application control plan. We've been building Authress for over 6 years in Switzerland, and have a very dedicated team focused on security and convenience.

Abstracts

specific

Authentication remains a complicated yet critical aspect of application security. In this talk, I'll demystify the core concepts, diving into access tokens, refresh tokens, and browser security mechanisms like WebAuthn for hardware-based authentication.
Additionally, I'll explore techniques such as session handling, revocation strategies, silent authentication for improved security UX, and the usage scopes for controlling access granularity, and common pitfalls associated with each.

Finally, I'll delve into JSON Web Tokens (JWTs), the use of EdDSA signatures for enhanced security and performance, as well as the common pitfalls that seasoned pro and newcomer alike struggle with when it comes to auth. Here I hope to equip everyone with some additional knowledge to navigate its complexities and build secure, user-friendly systems.

The Program Committee has not yet taken a decision on this talk

other talks of this topic

Photo
Pros and Cons of Jetpack Compose Toolkit

Stevan Milovanovic

InterVenture

specific
Photo
Feature Flags at Scale: Managing Complexity in High-Load Systems

Gloria Wang

Adobe

broad
Photo
Optimizing Performance with the Next.js Image Component: Beyond the Basics

Opemipo Disu

Latitude

specific
Photo
Thawing Java on AWS Lambda: Reducing cold start times from 6 seconds to .1

Daniel Raniz Raneland

factor10

specific
Photo
Workshop: Master Anti-Ban & Web Scraping Techniques (2h)

Fabien Vauchelles

Scrapoxy

specific
Photo
JavaScript is weird. MythBusters special.

Małgorzata Janeczek

Sector Alarm Tech

broad
Photo
You don't need to implement GraphQL

Sefi Ninio

Tikal Knowledge

specific
Photo
Throw exceptions... out of your codebase

Guillaume Faas

Vonage

specific
Photo
Simple and stable UI tests with Ultron

Aleksei Tiurin

Exness

specific
Photo
Finally, we can simplify our code with Java Virtual Threads and do away with Kotlin Coroutines! ...

João Esperancinha

Vereniging COIN

specific
Photo
100 APIs, 1000 Headaches: Overcoming Data Transformation Challenges in API Integration

Pradeep Sharma

Independent

broad
Photo
Building My First Useful AI RAG App in Java and React in Just 3 Days

Vadzim Prudnikau

Trainitek

specific
Photo
Bridging the SQL Skills Gap: How LLM-Based Text-to-SQL Boosts Team Productivity

Sivan Biham

Healthy.io

specific
Photo
Killing the Hydra: a hero's journey to trunk based development

Emanuele Giarlini

MOIA

specific
Photo
Live-Coding: Master Anti-Ban & Web Scraping Techniques with Scrapoxy

Fabien Vauchelles

Scrapoxy

specific
Photo
Crafting the Ultimate Docker Image for Spring Applications

Pasha Finkelshteyn

BellSoft

specific
Photo
Optimizing Email Management with Azure AI: A No-Code Case Study

Dieter Gobeyn

Sdworx

specific
Photo
Three Flavors of Pokémon - Framework Agnostic UI Testing

Shelly Goldblit

Dell Technologies

broad
Photo
From null to applications on Kubernetes

Roberth Strand

Sopra Steria

specific
Photo
Taking Shortcuts Beyond Your IDE

Annelore Egger

OpenValue Switzerland

broad
Photo
From React to Angular and Back: Cross-Framework Testing in Microfrontends

Shelly Goldblit

Dell Technologies

broad
Photo
Putting the asm in Wasm: from bytecode to native

Edoardo Vacchi

Tetrate

specific
Photo
UX at the centre of system development and design

Anesu Makwasha

Tose Technologies

specific
Photo
Become a Gen AI Bot Master in Just 50 Minutes – No Kidding!!

Ambesh Singh

Visionet Systems Deutschland

broad
Photo
What information are package & container registries hiding from you?

Avi Press

Scarf

broad
Photo
Algorithm Of Massively Parallel Networking In C++

Vladislav Shpilevoy

VirtualMinds

specific
Photo
From Server to Serverless - A story of saving Cost

Yoav Nordmann

Tikal Knowledge

specific
Photo
Deep dive into the postgres index types

Jesús Espino

Mattermost Inc.

specific
Photo
Beyond the Hype: Facing Micro Frontend Challenges in Large-Scale

Roei Berkovich

AppsFlyer

broad
Photo
How we elevated tracking data accuracy from ~60% to ~80%

Alina Krasavina

Delivery hero

broad
Photo
C# 13 Unleashed: Live Demos of my Top 10 Cutting-Edge Features!

Ambesh Singh

Visionet Systems Deutschland

broad
Photo
Pipeline Patterns and Antipatterns - Things your Pipeline Should (Not) Do

Daniel Raniz Raneland

factor10

specific
Photo
Path to Golden Path

Daniel Drack

FullStackS GmbH

broad
Photo
Quality Over Quantity - Active Learning Behind the Scenes

Sivan Biham

Healthy.io

specific
Photo
Go performance profiling in theory and practice

Alexey Palazhchenko

FerretDB Inc.

broad
Photo
Empowering AI with AgenticRAG: Enhancing Knowledge Graph-Based Agents for Intelligent Decision-Makin

Siddhant Agarwal

Neo4j

broad
Photo
Continuous Profiling on K8s - why, when and how

Ant(on) Weiss

PerfectScale

specific
Photo
Sustainable IT in Startups: Applying Green Coding Principles for a Greener Future

Katharina Fetzer

hylane GmbH

broad
Photo
Collaborative applications and how to make them fast

Bartosz Sypytkowski

appflowy.io

specific
Photo
Technical Debt Demystified: Efficient Solutions for Software Teams

Yusuf Aytas

Workday

broad
Photo
Shared Code, Shared Success: Building Libraries Used by Multiple Projects

Vadzim Prudnikau

Trainitek

broad
Photo
Why You Ignore Best Practices and How You Can Fix It

Annelore Egger

OpenValue Switzerland

broad
Photo
How Unit Testing Saved My Career

Annelore Egger

OpenValue Switzerland

broad
Photo
What doesn't the 100% Code Coverage metric tell us?

Mateusz Wojczal

Escola

broad
Photo
Sculpting Data for Machine Learning: Generative AI edition

Rishabh Misra

Attentive Mobile Inc

broad
Photo
AI-driven unstructured data extraction using Apache Camel and LangChain4J

Alexandre Gallice

Red Hat

broad
Photo
Best Practices for Cloud Native End-User Authentication & Authorization in Kubernetes

Federico Fregosi

OpsGuru

broad
Photo
An Efficient Git Workflow For High-Stakes Projects

Vladislav Shpilevoy

VirtualMinds

specific
Photo
C++ Under the Hood: (Internal Class Mechanisms)

Chris Ryan

-

specific

Tech Internals Conf is the leading conference for developers of complex and highly loaded systems

Participation options

Offline

The price is soaring —> the closer the conference is, the more it costs.

The current price of a ticket is —> 360 EUR

for individuals for legal entities

If you have any questions you can reach out to our support service —> support@internals.tech

Special offer (from 5 tickets)

To order from 5 tickets, contact us support@internals.tech

leave a request

Changed your mind?

Please tell us why.

Thank you for your reply!

Become partner

Professional conference for developers of high-load systems

  • 200-500
  • 500-1000
  • 1000+
  • NDA