Learn why the login box alone just won’t cut it – and how to move beyond it – as life and development continue to evolve.
Our day begins with a keynote exploring the problem of passwords, why authentication is more than a login box, and what’s next for customer identity. You’ll learn from industry and community leaders about modern techniques to build more secure apps, and get “hands on” with labs to put them in practice. Auth0 technical experts will be on-site to support one-on-one architecture reviews and offer opportunities to make new connections between sessions. We hope you can join us!
Building user login into your app used to be as simple as adding a form and a couple of database columns. These days, identity and access management is much more complex. Modern development means constantly balancing privacy and security with user experience, while trying to retain the flexibility and control you need to build great applications. In this keynote, you’ll learn how the identity landscape has evolved in recent years and what you can do to stay on top of it. You’ll also learn about identity trends that we’re watching and investing in to help you stay at the bleeding edge.
In this talk, I will give a quick overview of the past, present, and future of authentication. From basic authentication to passwordless biometric authentication using the web authentication API, and everything in between. The audience does not need any specific knowledge as this talk will not go into implementation details but aims to give a view of what's to come in terms of authentication.
JSON Web Tokens, or JWTs for short, are all over the web. They can be used to track bits of information about a user in a very compact way and can be used in APIs for authorization purposes. Join me and learn what JWTs are, what problems it solves, how you can use JWTs, and how to be safer when using JWTs on your applications.
Knowing who your authenticated user is and whether they have access to your application is one thing. Figuring out if they should be able to perform a certain action on a specific resource is another. Protecting our data and allowing users to only do what they should be allowed to do can become quite complex as your application grows. Luckily there are multiple authorization approaches available. Wondering what the best solution for your application is? Let’s find out how we can protect our content by using roles and permissions, or attribute based authorization all the way to fine grained authorization looking for relationships between the user, actions, and resources.
Bhawna Singh is a senior technology executive with over 20 years of experience in successfully transforming products and scaling technology for a global user base. In her career as an executive leader, investor, and advisory board member, Bhawna has worked across multiple high-growth and Fortune 500 companies to scale platforms from 0 to 100+ million monthly users, led global expansion of products, steered multiple acquisitions and spearheaded innovation to drive user growth and engagement, delivering multi million dollar revenue growth.
Currently, as SVP of Engineering at Okta, a worldwide leader in identity space, Bhawna leads tech strategy and vision for its CIAM product (Auth0), 13K+ paying and 40K+ free global customers. As their engineering leader, Bhawna is responsible for delivering highly resilient service through 300+ private and public cloud environments serving Billions of logins per month. Bhawna is responsible for the company's high resiliency & security posture and frequently connects with their global customer base to build deep trust through the technology strategy of building highly scalable and stable Auth0 products. Bhawna is also responsible for scanning the threat landscape for Auth0 while leading their product and platform security efforts.
My name is Jonathan Whitaker. I’ve spent the last 7+ years of my career in the authentication, authorization, and Identity and Access Management (IAM) domain. The emphasis of my work has been on building authorization integrations and frameworks for small, medium, and large application platforms. I have helped build IAM platforms for companies as big as Adobe and for small startups. Since I started working in this domain I have been fixated on trying to bring better solutions to developers for these common, yet challenging, problems. I am currently working on the OpenFGA and Auth0 FGA project at Okta/Auth0 to bring global scale, fine-grained authorization to a broader audience of developers.In my spare time I love to get outdoors and camp, hike, fly fish, and mountain bike.
Jessica Temporal is a Sr. Developer Advocate at Okta for Auth0. Co-founder and co-host of the first Brazilian podcast about data science Pizza de Dados. Creator of GitFichas, collection of Git study cards. Also loves to knit and picking up new skills on YouTube, right now learning to play the keyboard and how to do digital drawings.
Maya is Senior Software Engineer in Microsoft, working extensively with JavaScript and frontend frameworks and based in Israel. She founded and is currently the organizer of the VueJS Israel Meetup Community, helping to create a strong playground for Vue.js lovers and like-minded developers. Maya is also a published author, international speaker and an open-source library maintainer of frontend and web projects. As a core maintainer of StorefrontUI framework for e-commerce, she focuses on delivering performant components and best practices to the community while believing a strong Vanilla JavaScript knowledge is necessary for being a good web developer. She can be reached at her blog (https://mayashavin.com), on Twitter @mayashavin, or via email.