User authentication is hard. It’s a constant struggle between ease of use and effectiveness. User education has not been sufficient. Fortunately, better options already exist. U2F has proven effective over the years, and its successor, WebAuthn, is even better. This talk will discuss how FIDO2 and WebAuthn provide strong auth, using them to protect yourself, and how to add your own support.
Pre-Requisites: Basic understanding of password based authentication and public key cryptography.