Security Boulevard

What is a Passkey for Account Login?

Learn what passkeys are, how they use public key cryptography for account login, and why they are replacing legacy passwords in software development and ciam.
Security Boulevard

What are Refresh Tokens? Complete Implementation Guide & Security Best Practices

Learn how refresh tokens work in enterprise SSO. This guide covers implementation, rotation, and security best practices for CIAM systems.
CIO

Product Review: Mandylion Labs’ Log-In Manager Tokens Take On Password Overload

Password overload got you down? Looking for relief without resorting to Post-it notes? Mandylion Labs’ über password manager promises a simple, secure method to manage password proliferation, and the ...
Android Authority

Gmail login without a password? Google to offer NFC-enabled tokens next year

Let’s face it, using passwords to authenticate into a system is a broken mess. To be effective, passwords need to be unique, long, complex, and frequently changed, which may be acceptable in a tightly ...
Threat Post

Convenient Google WebLogin Tokens Can Expose User Accounts, Data

A researcher demonstrated an exposure in the Google ecosystem that allows an attacker to steal a WebLogin single sign-on token to access all of the Google services a user has configured. An exposure ...
Android Authority

How to get your Discord token

When you create a Discord account, you’re assigned a token. Your Discord token is separate from your username, tag, and password, and allows whoever has it to log ...