WebAuthn – Technology and integration in a Symfony project

Avatar of Stefan Richter Stefan Richter

We live in a world where everybody uses passwords every day to sign in to all kind of websites and services.
So it is clear that passwords are a critical point in cyber security. Unfortunately, they are also the biggest weakness in IT systems as they're responsible for 80% of all security breaches.
However, better solutions exist. For example, the FIDO2 project with the standard WebAuthn allows users to connect to websites without a password.
This presentation introduces the standard, how it works and its implementation in a Symfony project. It also covers the JavaScript API implementations and some Symfony bundles. I will detail how to implement bundles and to which points it’s important to pay attention.

Delivered in English

This talk is delivered twice during the conference:

  • Friday, December 4, 2020 at 11:55 AM – 12:30 PM

  • Friday, December 4, 2020 at 19:50 PM – 20:25 PM

Intermediate talk, some familiarity with the topic required.