All posts/ #security

• 

  How Password Hashing and Salt Can Enhance Password Security

  This article discusses the importance of password hashing and salting to secure password storage.

  May 18, 2023  • 5 min
• 

  Single Sign-On (SSO) vs. Federated Identity Management (FIM) - The Key Differences

  Numerous businesses have implemented solutions like federated identity management (FIM) and single sign-on (SSO) to enhance authentication process security while minimizing password fatigue. This article discusses the difference between these two approaches.

  April 27, 2023  • 6 min
• 

  Comparing ZITADEL to Firebase

  The purpose of this article is to guide readers on what are the differences between ZITADEL and Firebase

  April 25, 2023  • 8 min
• 

  Why an Authentication Solution Is Crucial for GDPR Compliance

  This article discusses the role of identity (IAM) vendors in becoming GDPR compliant and the responsibilities of data processors and controllers.

  April 13, 2023  • 5 min
• 

  Configuring Custom Claims in ZITADEL

  This article demonstrates how to add custom claims to your tokens through customizable actions.

  March 30, 2023  • 5 min
• 

  API Access and Token Introspection with OpenId Connect in ZITADEL

  This follow-up article demonstrates how to use ZITADEL to secure APIs and how back-end applications can access these protected APIs.

  March 23, 2023  • 10 min
• 

  Social Engineering - How Hackers are Manipulating You

  This article discusses the six most commonly encountered social engineering tactics and how to protect your account from cybercriminals.

  March 16, 2023  • 6 min
• 

  Secure Logins and Resource Access with ZITADEL and OpenID Connect - Part 2

  This follow-up article shows how a Web Application and a Single Page Application can securely authenticate end-users and gain access to protected resources using ZITADEL and OIDC.

  March 2, 2023  • 9 min
• 

  Secure Logins and Resource Access with ZITADEL and OpenID Connect - Part 1

  This article explains how applications can securely authenticate end users and control application access to protected resources using ZITADEL and OpenID Connect.

  February 27, 2023  • 9 min
• 

  How Attackers Bypass Two-factor Authentication (2FA)

  This article discusses five typical methods attackers use to bypass two-step verification or two-factor authentication and some precautions you may take to protect your account.

  February 16, 2023  • 7 min
• 

  How to Manage Authorizations with Role-Based Access Control

  In this article, you'll learn how RBAC works, what security use cases it enables, and how you can implement it to effectively authorize your users.

  January 12, 2023  • 8 min
• 

  Browser Fingerprinting: What Is It and Why Is It Used?

  Data stored in browsers can be used to identify site visitors and to track their activity. Browser Fingerprinting can reduce fraud and suspicious website traffic.

  January 5, 2023  • 6 min