Life beyond FIPS 140-3: identity tales - DevConf.CZ 2023

preview_player
Показать описание
Speaker(s): Alexander Bokovoy; Julien Rische

FIPS 140-3 standard has been published by NIST in 2019. When an operating system environment is put into a compliance with FIPS 140 standard series, the requirements extend to applications running in the environment as well. Each FIPS 140 standard generation was bringing ground breaking changes at the time, FIPS 140-3 is no different and its enforcement is like a snow at winter: we know things will break and they get broken but at a surprising angle.

The talk will look into how FIPS 140-3 affects identity management solutions with a focus on FreeIPA and Samba AD DC. These projects implement a complex stack of protocols whose lifetime spans more than forty years. Introducing new compliance requirements highlight hidden issues that weren't addressed for decades. Many of the issues intertwine protocol design evolution and implementation details. They also affect Linux systems' administrators in surprising and unpredictable ways.

  1. DevConf
Рекомендации по теме
Life beyond FIPS 1:09:29

Life beyond FIPS 140-3: identity tales - DevConf.CZ 2023

Quick Look: You, 0:04:30

Quick Look: You, Me and FIPS 140-3: A Guide to the New Standard and Transition

AWS re:Inforce 2023 0:15:46

AWS re:Inforce 2023 - AWS-LC: FIPS certification journey and how it’s used on AWS (DAP323)

100 days 100 0:00:16

100 days 100 wpm typing speed challenge Day 10 - 110 wpm speed #typingtest #challenge

Kingston DT2000 USB 0:06:31

Kingston DT2000 USB Drive | With Alphanumeric Keypad? | Setup Instruction

QTrust 2go Life 0:00:49

QTrust 2go Life für iPad

A Day in 0:01:08

A Day in the Life of a PIV User

AWS re:Invent 2019: 0:56:06

AWS re:Invent 2019: [REPEAT 1] Achieving security goals with AWS CloudHSM (SEC305-R1)

How to Setup 0:03:29

How to Setup the Kingston IronKey™ Keypad 200

ISC2 CCSP Practice 0:14:32

ISC2 CCSP Practice Questions | SAML, OAuth, OpenID | Detailed discussion

Federal Information Processing 0:05:49

Federal Information Processing Standards

BlackVault HSM - 0:05:18

BlackVault HSM - Configuration

SecureDrive BT - 0:08:30

SecureDrive BT - Wirelessly Authenticate your External Storage!

Ryan Thomas from 0:40:51

Ryan Thomas from Acumen presenting at PrimeKey Tech Days 2019

CAC/PIV Authenticator for 0:03:35

CAC/PIV Authenticator for the Atlassian Suite | Explainer Video

Cybersecurity Convocourses: Control 1:33:46

Cybersecurity Convocourses: Control Correlation Identifier (CCI), CIS and STIGS

Part 2: Cybersecurity 0:13:58

Part 2: Cybersecurity and U.S. Government: FISMA, FIPS, SP 800-53

Protect CUI Everywhere 0:57:52

Protect CUI Everywhere It’s Shared to Rapidly Prepare for CMMC | Beryllium + Virtru

wolfSSL Testing and 0:52:18

wolfSSL Testing and Security Vulnerability

PIV Card and 0:32:30

PIV Card and Background Investigation

C# 6.0 Tutorial 0:16:09

C# 6.0 Tutorial - Advanced - 71. How to Computes MAC Using TripleDES3

Quantum Leap in 0:45:43

Quantum Leap in Avionics: Enhancing Security, Airworthiness, and Safety

CSIAC Webinar - 1:11:43

CSIAC Webinar - Protecting CUI in Nonfederal Information Systems and Organizations

Army CAC Certificate 0:01:00

Army CAC Certificate Reduction and Realignment Plan

join shbcf.ru