Episode 79 -- Authenticate without Storing Credentials: MIT Scientist Cracks the Code

[Dave Chatterjee, Ph.D.]

Dear Colleagues:

Greetings!

Despite companies’ best efforts, stored access credentials inevitably get stolen or misused.  Whether it is a disgruntled employee posting the data, an employee that makes an innocent mistake exposing that data, a company needing revenue selling the information, a criminal hacker group stealing the information, or a government-backed group stealing the information, etc. it is simply a matter of when not if that information will be stolen. “The only truly safe way to handle people’s secrets is never to store them in the first place – what is not stored cannot be stolen,” says Tina Srivastava, Ph.D., an MIT-trained rocket scientist and privacy expert, who has cracked the code on stored credentials She is the co-founder of Badge, a platform that allows users to enroll and authenticate on any device without storing Personally Identifiable Information (PII). In this episode, Tina and I discuss how the new technology works, its implications, and how organizations should ensure they are not storing user credentials.
To listen to the episode -- https://www.cybersecurityreadinesspodcast.com/authenticate-without-storing-credentials-mit-scientist-cracks-the-code/
To access and download the entire podcast summary with discussion highlights -- https://www.dchatte.com/episode-79-authenticate-without-storing-credentials-mit-scientist-cracks-the-code/

Sincerely,

Dave
------------------------------------
Dave Chatterjee, Ph.D. (https://dchatte.com<https://dchatte.com/>)
Adjunct Associate Professor, Pratt School of Engineering, Duke University

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://isworld.org/pipermail/aisworld_isworld.org/attachments/20250114/2c750be0/attachment.htm>