Miscellaneous Tech News
-
@Dashrender said in Miscellaneous Tech News:
I really don't know anything about FIDO2.
https://www.yubico.com/2018/05/what-is-fido2/
Last month, open authentication standards reached an important milestone; Microsoft launched support for FIDO2 and CTAP, and the World Wide Web Consortium (W3C) won approval for WebAuthn. Since then, Yubico has received questions on how these efforts are related, what role FIDO U2F and Yubico have in the mix, and what organizations can implement now — and in the future — to enable simple, strong authentication for employees and end-users. This blog will bring some clarity to those questions.
What is the difference between FIDO U2F and FIDO2?
U2F was developed by Yubico and Google, and contributed to the FIDO Alliance after it was successfully deployed for Google employees. The protocol is designed to act as a second factor to strengthen existing username/password-based login flows. It’s built on Yubico’s invention of a scalable public-key model in which a new key pair is generated for each service and an unlimited number of services can be supported, all while maintaining full separation between them to preserve privacy.
Essentially, FIDO2 is the passwordless evolution of FIDO U2F. The overall objective for FIDO2 is to provide an extended set of functionality to cover additional use-cases, with the main driver being passwordless login flows. The U2F model is still the basis for FIDO2 and compatibility for existing U2F deployments is provided in the FIDO2 specs.
What is WebAuthn & CTAP?
A new, extensible web authentication API, called Webauthn, has been developed within W3C, which supports both existing FIDO U2F and upcoming FIDO2 credentials.
The FIDO U2F client-side protocol has been renamed CTAP1, and a new, extensible client-to-authenticator protocol (CTAP2) has been developed to allow for external authenticators (tokens, phones, smart cards etc.) to interface with FIDO2-enabled browsers and Operating Systems
WebAuthn and CTAP2 are both required to deliver the FIDO2 passwordless login experience, but WebAuthn still supports FIDO U2F authenticators, since CTAP1 is also part of the WebAuthn specification.
How can organizations deploy FIDO2?
So, what can organizations do if they are aiming to provide support for FIDO2? We recommend making support for WebAuthn as it works with existing FIDO U2F authenticators and also FIDO 2 authenticators.
Mozilla Firefox 60 recently added support for WebAuthn, Chrome 67 will be shipping with WebAuthn support in the near future, and Microsoft has already announced they will support WebAuthn in Edge browsers. The U2F web API continues to work for U2F authenticators, but is limited to the Chrome and Opera browsers.
To evaluate WebAuthn with FIDO U2F and FIDO2 authenticators today, Yubico offers a test service at demo.yubico.com/webauthn, and soon we will provide more complete open source FIDO2 servers on GitHub. Organizations can sign up for updates from the Yubico Developer Program to get information on FIDO2 and WebAuthn resources.
-
@travisdh1 said in Miscellaneous Tech News:
@Kelly said in Miscellaneous Tech News:
Some interesting updates to the Linux Subsystem: https://www.zdnet.com/article/windows-10-is-getting-a-microsoft-built-linux-kernel/.
How long till Windows is just another graphical shell you can run on linux?
That's all it was from Windows 1 - Windows ME. It only ran on DOS, but if you cared, you could port that to Linux no problem.
Windows NT has a graphical shell but it is much more integrated and can't be separated from the kernel (probably for that reason.)
-
OK so FIDO2 uses public-key model.
But not as good at FIDO U2F because it's still only a single factor, where U2F is a second factor solution.
So where are the private keys held? How do you import them into your mobile devices? What happens if your private keys get loose?
Yeah yeah yeah, I know - go read the page.
-
@travisdh1 said in Miscellaneous Tech News:
@Kelly said in Miscellaneous Tech News:
Some interesting updates to the Linux Subsystem: https://www.zdnet.com/article/windows-10-is-getting-a-microsoft-built-linux-kernel/.
How long till Windows is just another graphical shell you can run on linux?
I hope not too long. It would be amazing if they did this.
-
Google renames Assistant home devices, debuts $229 Nest Hub Max
The Google Assistant got yet another home today, this time in the Nest lineup.
At its annual developers conference, Google expanded its line of Assistant home devices and renamed the entire family -
Microsoft Word AI 'to improve writing'
A new feature in Microsoft's Word aims to help improve writing beyond the usual grammar fixes.
Using artificial intelligence, Ideas will suggest rewrites for clunky sentences as well as changes to make sure language is gender inclusive.
-
Google reveals lower-cost Pixel 3a phones and Nest Hub Max
Google is to sell a range of lower-cost smartphones as part of an effort to jump-start sales of its Pixel brand.
In addition, the company has shown off its first voice-controlled smart screen for the home to feature a camera.
-
Red Hat Enterprise Linux 8 now generally available...
https://developers.redhat.com/blog/2019/05/07/red-hat-enterprise-linux-8-now-generally-available/
-
@zachary715 said in Miscellaneous Tech News:
Red Hat Enterprise Linux 8 now generally available...
https://developers.redhat.com/blog/2019/05/07/red-hat-enterprise-linux-8-now-generally-available/
Whoa, I had no idea that it was coming so soon.
-
how long till CentOS 8?
-
Looks like about a one month trail...
-
@zachary715 but I want to start deploying now!
-
Lenovo adds AMD Ryzen Pro-powered laptops to its ThinkPad family
You can get the first available models at the end of May starting at $939.
Lenovo is adding more choices to its beloved and iconic ThinkPad lineup this year: the new T495, T495s, and X395 laptops are all powered by AMD's Ryzen 7 Pro processors with integrated Vega graphics. -
Microsoft Identity Platform To Supplant Azure Active Directory for App Developers
Microsoft this week announced the new Microsoft Identity Platform as its latest means for adding identity support to applications.
The Microsoft Identity Platform was described by Microsoft as being an evolution from the current Azure Active Directory version 1.0 solutions. -
Microsoft brings PowerToys back to let anyone improve Windows 10 for power users
Another Windows open-source project from Microsoft
Microsoft first introduced the concept of “PowerToys” in Windows 95. -
uBreakiFix can now repair your brand-new Pixel 3A
The walk-in service is offered across all 450 US stores&
If you’ve managed to break your Pixel 3A already, just one day after its launch, then you’ll be happy to hear there’s now a Google-backed repair service that’ll fix it. -
“RobbinHood” ransomware takes down Baltimore city government networks
A year after 911 system hit, most of city's networks are down.
Systems at a number of departments of Baltimore’s city government were taken offline on May 7 by a ransomware attack. -
@mlnews said in Miscellaneous Tech News:
Lenovo adds AMD Ryzen Pro-powered laptops to its ThinkPad family
You can get the first available models at the end of May starting at $939.
Lenovo is adding more choices to its beloved and iconic ThinkPad lineup this year: the new T495, T495s, and X395 laptops are all powered by AMD's Ryzen 7 Pro processors with integrated Vega graphics.You really posted that here? Now I'm sure you're not @scottalanmiller
-
@Dashrender said in Miscellaneous Tech News:
@mlnews said in Miscellaneous Tech News:
Lenovo adds AMD Ryzen Pro-powered laptops to its ThinkPad family
You can get the first available models at the end of May starting at $939.
Lenovo is adding more choices to its beloved and iconic ThinkPad lineup this year: the new T495, T495s, and X395 laptops are all powered by AMD's Ryzen 7 Pro processors with integrated Vega graphics.You really posted that here? Now I'm sure you're not @scottalanmiller
She's not.
-
Microsoft Says Organizations Should Use a Different Computer for Admin Tasks
Establish a separate device for administrative tasks that is updated and patched with the most recent software and operating system. Set the security controls at high levels and prevent administrative tasks from being executed remotely.