Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Death to Passwords

Sponsored · SiteGround - Reliable hosting with speed, security, and support you can count on.
Avatar for Cristiano Betta Cristiano Betta
November 24, 2014
Technology
74
1

Death to Passwords

Avatar for Cristiano Betta

Cristiano Betta

November 24, 2014

More Decks by Cristiano Betta

See All by Cristiano Betta
Docs as Engineering - DevRelCon London 2019
Avatar for Cristiano Betta cbetta
0
190
DevRelCon London 2019 - Developer Experience Workshop
Avatar for Cristiano Betta cbetta
0
170
DevRelCon London 2019 - Developer Experience Workshop
Avatar for Cristiano Betta cbetta
0
440
The 7 Deadly Sins of Developer Experience (DevRelCon Tokyo)
Avatar for Cristiano Betta cbetta
0
4.3k
The State of Encryption
Avatar for Cristiano Betta cbetta
0
430
Developer Experience Workshop
Avatar for Cristiano Betta cbetta
1
620
The 7 Deadly Sins of Developer Onboarding
Avatar for Cristiano Betta cbetta
0
210
A brick by brick guide to developer experience
Avatar for Cristiano Betta cbetta
2
690
Hackathons Workshop
Avatar for Cristiano Betta cbetta
0
340

Other Decks in Technology

See All in Technology
Oracle AI Database@Azure:サービス概要のご紹介
Avatar for oracle4engineer oracle4engineer
PRO
6
1.9k
protovalidate-es を導入してみた
Avatar for 弁護士ドットコム bengo4com
0
120
Mastering Ruby Box
Avatar for Satoshi Tagomori tagomoris
3
150
10倍の生産性を実現するAI駆動並列エージェントのすべて
Avatar for 熊井悠 kumaiu
4
770
AI-DLCを活用した高品質・安全なAI駆動開発実践 / AI Driven Development with AI-DLC
Avatar for 吉田真吾 yoshidashingo
0
140
Platform engineering for developers, architects & the rest of us (AI agents)
Avatar for danielbryantuk danielbryantuk
0
180
Sony_KMP_Journey_KotlinConf2026
Avatar for ソニー株式会社 sony
2
210
Amazon Bedrock AgentCore ワークショップ JAWS UG TOHOKU / amazon-bedrock-agentcore-workshop-jawsug-tohoku-2026
Avatar for geeawa gawa
8
330
Databricks 月刊サービスアップデート 2026年05月号
Avatar for ちょし tyosi1212
0
210
【5分でわかる】セーフィー エンジニア向け会社紹介
Avatar for Safie safie_recruit
0
50k
AI Engineering Summit Tokyo 2026 AIの前に、やることがある 〜医療データ企業の4フェーズ〜
Avatar for Daisuke Taniwaki dtaniwaki
0
2k
SIer20年! 培ったスキルがスタートアップで輝く時
Avatar for しゅういちろ shucho0103
0
470

Featured

See All Featured
How to Grow Your eCommerce with AI & Automation
Avatar for Katarina Dahlin katarinadahlin
PRO
1
200
AI: The stuff that nobody shows you
Avatar for John Nunemaker jnunemaker
PRO
8
690
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
Avatar for Eileen M. Uchitelle eileencodes
38
2.9k
Building Applications with DynamoDB
Avatar for Matt Wood mza
96
7.1k
The Organizational Zoo: Understanding Human Behavior Agility Through Metaphoric Constructive Conversations (based on the works of Arthur Shelley, Ph.D)
Avatar for Dr. Kim W Petersen kimpetersen
PRO
0
350
sira's awesome portfolio website redesign presentation
Avatar for ElsiraPls elsirapls
0
270
10 Git Anti Patterns You Should be Aware of
Avatar for Lemi Orhan Ergin lemiorhan
PRO
659
62k
Documentation Writing (for coders)
Avatar for Carmen Chung carmenintech
77
5.4k
The Success of Rails: Ensuring Growth for the Next 100 Years
Avatar for Eileen M. Uchitelle eileencodes
47
8.2k
Leveraging LLMs for student feedback in introductory data science courses - posit::conf(2025)
Avatar for Mine Cetinkaya-Rundel minecr
1
280
Practical Orchestrator
Avatar for Shlomi Noach shlominoach
191
11k
Keith and Marios Guide to Fast Websites
Avatar for Keith Pitt keithpitt
413
23k

Transcript

  1. None

  2. Death to Passwords

  3. Death to Passwords Cristiano Betta Developer Advocate

  4. Death to Passwords Cristiano Betta Developer Advocate

  5. Death to Passwords Cristiano Betta Developer Advocate @cbetta | @braintree_dev

  6. Braintree_Dev. @cbetta | @braintree_dev WHERE I LIVE

  7. Braintree_Dev. @cbetta | @braintree_dev WHERE I USED TO LIVE

  8. Braintree_Dev. @cbetta | @braintree_dev

  9. Braintree_Dev. @cbetta | @braintree_dev That’s me

  10. Braintree_Dev. @cbetta | @braintree_dev

  11. Braintree_Dev. @cbetta | @braintree_dev

  12. Braintree_Dev. @cbetta | @braintree_dev

  13. Braintree_Dev. @cbetta | @braintree_dev >Death to Passwords_

  14. Braintree_Dev. @cbetta | @braintree_dev

  15. Braintree_Dev. @cbetta | @braintree_dev

  16. Braintree_Dev. @cbetta | @braintree_dev >The 3 key problems_

  17. Braintree_Dev. @cbetta | @braintree_dev The top 1000 most used passwords

    of 2012 wiki.skullsecurity.org/Passwords

  18. Braintree_Dev. @cbetta | @braintree_dev The top 1000 most leaked passwords

    of 2012 wiki.skullsecurity.org/Passwords

  19. Braintree_Dev. @cbetta | @braintree_dev 4.7% OF ALL LEAKED PASSWORDS ARE

  20. Braintree_Dev. @cbetta | @braintree_dev 4.7% OF ALL LEAKED PASSWORDS ARE

    PASSWORD

  21. Braintree_Dev. @cbetta | @braintree_dev

  22. Braintree_Dev. @cbetta | @braintree_dev 8.5% OF ALL LEAKED PASSWORDS ARE

  23. Braintree_Dev. @cbetta | @braintree_dev 8.5% OF ALL LEAKED PASSWORDS ARE

    PASSWORD or 123456

  24. Braintree_Dev. @cbetta | @braintree_dev 4.7% OF ALL LEAKED PASSWORDS ARE

  25. Braintree_Dev. @cbetta | @braintree_dev 4.7% OF ALL LEAKED PASSWORDS ARE

    PASSWORD or 123456 or 12345678

  26. Braintree_Dev. @cbetta | @braintree_dev ... and it doesn’t even stop

    there
 
 14% have a password from the top 10
 40% have a password from the top 100
 79% have a password from the top 500
 91% have a password from the top 1000


  27. Braintree_Dev. @cbetta | @braintree_dev abstrusegoose.com/296

  28. Braintree_Dev. @cbetta | @braintree_dev A brief analysis of the situation

    in 2013 cbsn.ws/1siTPGH

  29. Braintree_Dev. @cbetta | @braintree_dev 1. 123456 2. password 3. 12345678

    4. qwerty 5. abc123 6. 123456789 7. 111111 8. 1234567 9. iloveyou 10. adobe123 11. 123123 12. admin 13. 1234567890 14. letmein 15. photoshop 16. 1234 17. monkey 18. shadow 19. sunshine 20. 12345

  30. Braintree_Dev. @cbetta | @braintree_dev 1. 123456 up 1 2. password

    down 1 3. 12345678 4. qwerty up 1 5. abc123 down 1 6. 123456789 new 7. 111111 up 2 8. 1234567 up 5 9. iloveyou up 2 10. adobe123 new 11. 123123 up 5 12. admin new 13. 1234567890 new 14. letmein down 7 15. photoshop new 16. 1234 new 17. monkey down 11 18. shadow 19. sunshine down 5 20. 12345 new

  31. Braintree_Dev. @cbetta | @braintree_dev 11. 123123 up 5 12. admin

    new 13. 1234567890 new 14. letmein down 7 15. photoshop new 16. 1234 new 17. monkey down 11 18. shadow 19. sunshine down 5 20. 12345 new 1. 123456 up 1 2. password down 1 3. 12345678 4. qwerty up 1 5. abc123 down 1 6. 123456789 new 7. 111111 up 2 8. 1234567 up 5 9. iloveyou up 2 10. adobe123 new

  32. Braintree_Dev. @cbetta | @braintree_dev 11. 123123 up 5 12. admin

    new 13. 1234567890 new 14. letmein down 7 15. photoshop new 16. 1234 new 17. monkey down 11 18. shadow 19. sunshine down 5 20. 12345 new 1. 123456 up 1 2. password down 1 3. 12345678 4. qwerty up 1 5. abc123 down 1 6. 123456789 new 7. 111111 up 2 8. 1234567 up 5 9. iloveyou up 2 10. adobe123 new

  33. Braintree_Dev. @cbetta | @braintree_dev 11. 123123 up 5 12. admin

    new 13. 1234567890 new 14. letmein down 7 15. photoshop new 16. 1234 new 17. monkey down 11 18. shadow 19. sunshine down 5 20. 12345 new 1. 123456 up 1 2. password down 1 3. 12345678 4. qwerty up 1 5. abc123 down 1 6. 123456789 new 7. 111111 up 2 8. 1234567 up 5 9. iloveyou up 2 10. adobe123 new

  34. Braintree_Dev. @cbetta | @braintree_dev

  35. Braintree_Dev. @cbetta | @braintree_dev

  36. Braintree_Dev. @cbetta | @braintree_dev

  37. Braintree_Dev. @cbetta | @braintree_dev

  38. Braintree_Dev. @cbetta | @braintree_dev

  39. Braintree_Dev. @cbetta | @braintree_dev

  40. Braintree_Dev. @cbetta | @braintree_dev “FAVOR SECURITY TOO MUCH OVER THE

    EXPERIENCE AND YOU’LL MAKE THE WEBSITE A PAIN TO USE.” smashingmagazine.com /2012/10/26/password-masking-hurt-signup-form

  41. Braintree_Dev. @cbetta | @braintree_dev vs

  42. Braintree_Dev. @cbetta | @braintree_dev

  43. Braintree_Dev. @SeraAndroid / @PayPalDev People forget passwords… 45% admit to

    leaving a website instead of re- setting their password or answering security questions - Blue Inc. 2011

  44. Braintree_Dev. @cbetta | @braintree_dev Let’s admit it...
 Passwords really suck!

  45. Braintree_Dev. @SeraAndroid / @PayPalDev People hate to register Out of

    657 surveyed users 66% think that social sign-in is a desirable alternative. - Blue Inc. 2011

  46. Braintree_Dev. @cbetta | @braintree_dev Let’s admit it...
 Passwords really, really

    suck!

  47. Braintree_Dev. @cbetta | @braintree_dev “Braintree Says Goodbye to Passwords With

    One Touch Payments for PayPal and Venmo, and Hello to Bitcoin” braintreepayments.com /blog/goodbye-passwords-one-touch-hello-bitcoin

  48. Braintree_Dev. @cbetta | @braintree_dev Merchant app PayPal app Merchant app

  49. Braintree_Dev. @cbetta | @braintree_dev  Merchant app PayPal app Merchant

    app

  50. Braintree_Dev. @cbetta | @braintree_dev  Merchant app PayPal app Merchant

    app

  51. Braintree_Dev. @cbetta | @braintree_dev  Merchant app PayPal app Merchant

    app

  52. Braintree_Dev. @cbetta | @braintree_dev > Continue? (Y/n) _

  53. Braintree_Dev. @cbetta | @braintree_dev Multi-Factor Authentication en.wikipedia.org /wiki/Multi-factor_authentication

  54. Braintree_Dev. @cbetta | @braintree_dev KNOWLEDGE FACTOR

  55. Braintree_Dev. @cbetta | @braintree_dev INHERENCE FACTOR

  56. Braintree_Dev. @cbetta | @braintree_dev POSSESSION FACTOR

  57. Braintree_Dev. @cbetta | @braintree_dev 2-Factor Authentication twofactorauth.org

  58. Braintree_Dev. @cbetta | @braintree_dev twofactorauth.org

  59. Braintree_Dev. @cbetta | @braintree_dev Passwordless Authentication medium.com /@ninjudd/passwords-are-obsolete-9ed56d483eb

  60. Braintree_Dev. @cbetta | @braintree_dev

  61. Braintree_Dev. @cbetta | @braintree_dev

  62. Braintree_Dev. @cbetta | @braintree_dev

  63. Braintree_Dev. @cbetta | @braintree_dev

  64. Braintree_Dev. @cbetta | @braintree_dev

  65. fidoalliance.org

  66. Braintree_Dev. @cbetta | @braintree_dev

  67. Braintree_Dev. @cbetta | @braintree_dev

  68. Braintree_Dev. @cbetta | @braintree_dev

  69. Braintree_Dev. @cbetta | @braintree_dev

  70. Braintree_Dev. @cbetta | @braintree_dev

  71. Braintree_Dev. @cbetta | @braintree_dev > Exit? (Y/n) _

  72. Braintree_Dev. @cbetta | @braintree_dev Authorization & Authentication stackoverflow.com /questions/6367865/is-there-a-difference- between-authentication-and-authorization

  73. Braintree_Dev. @cbetta | @braintree_dev Google Facebook Twitter

  74. Braintree_Dev. @cbetta | @braintree_dev

  75. Braintree_Dev. @cbetta | @braintree_dev

  76. None
  77. None
  78. None

  79. Braintree_Dev. @cbetta | @braintree_dev

  80. Braintree_Dev. @cbetta | @braintree_dev • Passwords are awesome

  81. Braintree_Dev. @cbetta | @braintree_dev • Passwords are awesome • But

    people+passwords suck

  82. Braintree_Dev. @cbetta | @braintree_dev • Passwords are awesome • But

    people+passwords suck • We need something you have, know and/or are

  83. Braintree_Dev. @cbetta | @braintree_dev • Passwords are awesome • But

    people+passwords suck • We need something you have, know and/or are • Wearable tech opens up a new world of possibilities

  84. Braintree_Dev. @cbetta | @braintree_dev • Passwords are awesome • But

    people+passwords suck • We need something you have, know and/or are • Wearable tech opens up a new world of possibilities • Don’t re-invent the wheel

  85. Braintree_Dev. @cbetta | @braintree_dev • Passwords are awesome • But

    people+passwords suck • We need something you have, know and/or are • Wearable tech opens up a new world of possibilities • Don’t re-invent the wheel • FIDO

  86. Braintree_Dev. @cbetta | @braintree_dev • Passwords are awesome • But

    people+passwords suck • We need something you have, know and/or are • Wearable tech opens up a new world of possibilities • Don’t re-invent the wheel • FIDO • Third party auth

  87. Braintree_Dev. @cbetta | @braintree_dev

  88. THANK YOU Cristiano Betta Developer Advocate @cbetta | @braintree_dev [email protected]

    braintreepayments.com