Name: I Forgot My Password
Start: 2015-08-05T10:30:00-0700
End: 2015-08-05T10:55:00-0700

Back To Schedule

I Forgot My Password

Users often forget their passwords, so applications often must have a password reset mechanism. There are several options for how to do it; some of them are good, most of them not so good. Generate a password and send it in an email? No. Security questions? No way. Reset passwords via a phone call? Rather not. This talk presents some really creative examples of botched password reset implementations, as well as a proven method for resetting passwords securely.

Speakers

Michal Špaček

Michal, aka spazef0rze, is an application security engineer who's on a mission to show developers how & why to write secure code, and is the discoverer of the PHP "md5(QNKCDZO)" bug. Michal has worked for small and big, local and multinational, and is currently freelancing.

Wednesday August 5, 2015 10:30 - 10:55 PDT
Passwords Tuscany

Passwords

BSidesLV 2015

Michal Špaček

Attendees (2)

BSidesLV 2015

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Michal Špaček

Attendees (2)