All posts/ #security

• 

  How Attackers Bypass Two-factor Authentication (2FA)

  This article discusses five typical methods attackers use to bypass two-step verification or two-factor authentication and some precautions you may take to protect your account.

  February 16, 2023  • 7 min
• 

  How to Manage Authorizations with Role-Based Access Control

  In this article, you'll learn how RBAC works, what security use cases it enables, and how you can implement it to effectively authorize your users.

  January 12, 2023  • 8 min
• 

  Browser Fingerprinting: What Is It and Why Is It Used?

  Data stored in browsers can be used to identify site visitors and to track their activity. Browser Fingerprinting can reduce fraud and suspicious website traffic.

  January 5, 2023  • 6 min
• 

  Thermal Attacks - How Heat From Fingertips Can Reveal Passwords

  While you might be familiar with common hacking methods, such as phishing and malware, researchers have discovered a bizarre new alternative: Thermal Attacks.

  December 22, 2022  • 6 min
• 

  How to handle silent-login in ZITADEL?

  It's important to secure the myriad of connections between the devices in an IoT network and the services they communicate with. This is where IoT authentication plays its vital role. In this article, you'll learn how authentication in IoT works and how you can achieve device authentication in an IoT system.

  December 20, 2022  • 3 min
• 

  How Does the Internet of Things Authentication Work?

  It's important to secure the myriad of connections between the devices in an IoT network and the services they communicate with. This is where IoT authentication plays its vital role. In this article, you'll learn how authentication in IoT works and how you can achieve device authentication in an IoT system.

  December 15, 2022  • 5 min
• 

  Use ZITADEL as SSO provider for self-hosting

  In this tutorial, you'll learn what benefits SSO brings to the table. You'll learn how to delegate access from a self-hosted Nextcloud service to ZITADEL as an SSO provider

  December 8, 2022  • 7 min
• 

  Simplify Delegated Access Management and Self-Service

  Granting access is complex, and delegating it needs to be done safely. In this guide, you'll learn how to simplify delegated access management and self-service.

  November 24, 2022  • 8 min
• 

  What is an Identity Broker? - Everything you need to know

  Integrating multiple Identity Providers directly within applications is complex to maintain, time-consuming to set up, and hinders single sign-on of users. Luckily, this problem can be easily solved with the help of an Identity Broker.

  November 17, 2022  • 5 min
• 

  Your Spellchecker Might Have Leaked Your Passwords

  Whereas a seemingly innocent spellchecker might not raise any red flags, convenience and confidentiality are regrettably not always compatible online. This article explains the privacy shortcomings of Chrome’s Enhanced Spellcheck and Edge’s MS Editor and what you can do to keep your data safe.

  November 3, 2022  • 4 min
• 

  Why Security Questions Are Useless And Unsafe

  Discussing the shortcomings of security questions as a protection measure and what you can do to make them stronger.

  October 27, 2022  • 7 min
• 

  Security Threats of Public Wi-Fi - Is It Just Fearmongering?

  Although public Wi-Fi networks certainly carry some frightening risks with a lot on the line, it is evident that such attacks aren't guaranteed occurrence. So how likely is it really that one will fall victim to a malicious network?

  September 15, 2022  • 7 min