Every 2 weeks, Conor Gilsenan hosts a conversation with creators, researchers, founders, and advocates who are working to improve the usability of security and privacy technologies. Guests share what they are currently working on, how they got to where they are today, who they are trying to help, and what keeps them motivated to overcome challenges along the way. The goal is for the rest of us to learn from their experiences and go on to promote usable security and privacy within our own projects and organizations.
https://allthingsauth.com/podcast
episode 2: #002 - Your Phone is a Phishing Resistant Security Key with Alex Grinman of Kryptco
Alex shares the story of how Krypton first started as a secure messaging app, then evolved to help developers manage SSH keys, and today aims to make phishing resistant two factor authentication a realistic option for average internet users.
We get Alex’s thoughts on Google’s recent focus on allowing Android phones to be used as security keys, what happens if you lose your phone, and different approaches to account recovery.
Social media & website
- Kryptco: krypt.co, @kryptco, hello@krypt.co
- Alex Grinman: www.alexgr.in, @alexgrinman
Resources mentioned in episode
- Phishing resistant two factor authentication (2FA) comes from implementing the FIDO2: WebAuthn & CTAP specifications.
- Krypton’s blog post, Our Zero-Trust Infrastructure, explains how the Krypton app pairs your phone to your browser to guarantee secure communication.
- You can find all of Kryptco’s open source software on GitHub.
- Google Security Blog - Advisory: Security Issue with Bluetooth Low Energy (BLE) Titan Security Keys
You can find Conor, the host, on Twitter @conorgil.
Canonical URL: https://allthingsauth.com/podcast/002-alex-grinman-of-kryptco