WebAuthn and Multi-factor Authentication Support in Keycloak - DevConf.CZ 2020

Speakers: Peter Skopek, Takashi Norimatsu

Keycloak is an Identity and Access Management (IAM) OSS used not only for Single-Sign On(SSO) but securing API access.
W3C Web Authentication (WebAuthn) is a web standard that can realize password-free, strong, and user-friendly authentication. It has the potential to resolve security problems due to password-based authentication. Its clients are implemented in famous browsers.
We will explain in depth the Keycloak's WebAuthn server support for two factor authentication. The speaker had contributed with the community of webauthn4j, an OSS for WebAuthn protocol processing library that is used for this WebAuthn support.
Next we will show multi-factor authentication support in Keycloak which is another step towards passwordless experience. Hopefully, we can get feedback from attendees about presented features so we can incorporate them into Keycloak in order to make it more useful and attractive to a lot of people.

[ https://sched.co/YOwY ]

--
Recordings of talks at DevConf are a community effort. Unfortunately not everything works perfectly every time. If you're interested in helping us improve, let us know.