Brendan "B" Burke
Advanced Threat, State Street
Actions
I'm a Threat Hunter working for the US Custodian Bank State Street.
I enjoy distro-hopping, tinkering with my emacs config, hacking old hardware, cryptography, and poppin' shells.
Links
Area of Expertise
Everything you never asked about Email
Since the 90's Email has quickly become the global standard for electronic communication. So much so that it's basically impossible to function in modern society without an email address. But modern email is a completely different beast to the email of the 90's.
In this talk we'll go beyond basic SMTP, POP3, and IMAP and dive deeper into modern additions like DMARC, MTA-STS, TLS Reporting, BIMI, DNSBLs, S/MIME, and much more. We'll also cover the recent SMTP Smuggling attack method and the mitigations.
Finally, we'll discuss why protocol design is difficult and time consuming. We'll get insight into the many reasons email has endured, and whether we can and should build better protocols in the face of the network effect.
FIDObituary - The Death of Passwords
Passwords are a horrible, legacy method used for authentication. They are a ubiquitous, persistent nuisance that fall flat; password reuse, bad policies, expiry, easily guessed or phished, etc.
FIDO Authentication, developed by the FIDO Alliance, is a global authentication standard based on public key cryptography that perfectly addresses these legacy issues and the modern threat landscape.
In this talk I'll cover everything we get wrong about passwords and what the future of authentication looks like. I will talk about the FIDO framework, demo passkey authentication, discuss it's various use cases, and outline how you and your organisation can move to a passwordless future.
BSides Belfast 2023 Sessionize Event
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top