In this episode of Nerding Out with Viktor, Viktor is joined by Massi Gori, an expert in authentication and identity management, for a deep dive into the evolution and future of digital security. Massi, a veteran in the field and currently a product manager at Canonical, shares insights from nearly two decades of experience covering everything from legacy systems to the latest in passwordless technology.

The conversation begins with a look back at the origins of authentication technology, where foundational protocols like LDAP and Kerberos first addressed the need for secure, shared computing environments. Massi recounts the rise of SAML, OAuth, and OpenID, which paved the way for Single Sign-On (SSO) and federated identity management, now essential for secure, streamlined access across multiple systems.

Viktor and Massi explore the critical difference between authentication (establishing identity) and authorization (defining access permissions), explaining how each fits into the broader framework of identity management. Massi also outlines the importance of user management and governance, key elements in maintaining security at scale. They discuss the progression from early hardware tokens to today’s Multi-Factor Authentication (MFA) options, which have made secure access more accessible and manageable for users worldwide.

The focus then shifts to the advancements of FIDO2 and WebAuthn standards, which represent a significant step toward a passwordless future. Massi delves into how these standards work to enhance security by protecting against advanced threats like adversary-in-the-middle attacks. He explains how continuous verification through biometrics, behavioral analysis, and device-based security is central to the zero-trust model, which increasingly underpins secure access policies.

In the latter part of the episode, Viktor and Massi discuss the latest development in passwordless technology: passkeys. By combining the security benefits of FIDO2 with the convenience of cloud synchronization, passkeys allow users to maintain secure access without relying on traditional passwords. The duo compares the strengths of physical hardware tokens, such as YubiKeys, with the ease of use offered by passkeys, giving listeners a clear picture of the trade-offs between these options.

This episode offers listeners a compelling exploration of the latest trends in authentication technology, with insights on how companies can stay ahead of security challenges in an increasingly connected world. Whether you’re a tech enthusiast or a security professional, this conversation provides valuable perspectives on the future of digital identity.