Michael Engan

Principal Systems Architect; T-Mobile
Michael is a Principal Engineer with T-Mobile where he has worked in the Authentication, Authorization, and API security space for more than 6 years. His latest projects have focused on finding simple and secure ways to secure the api's T-Mobile exposes. Michael is the Chief Services Architect for the new Mobile Authentication task force a project jointly developed by the four us carriers.

Michael's Sessions

Tuesday, June 25
3:15 - 3:40 pm
Bake your own App-layer Proof of Possession
As an IDP we are moving users away from static passwords, by rolling out fido keys. Likewise we have been shifting our RP/SP's away from Client secrets and towards registered JWK public keys. The OIDF standards now enable clients to use proof of key signatures in both the Authorization and Token endpoints/calls. With this presentation I will review suggested changes to enable clients to re-use the same keys to secure Userinfo, or any other API services. Likewise we can show how Client instances can user runtime keys to secure these calls. While providing similar protections that the TLS token binding standards have pursued this method will allow spanning TLS tunnels, and enables applications to sign a transaction as it passes through multiple service layers.

Friday, June 28
9:30 - 10:20 am
Finally something better than SMS OTP
The four US carriers are working together to deliver a standardized authentication framework that enables any third party secure authentication of users, and seamless identities as user port across carriers or change their phone number. This will be a discussion on various use cases solved by this solution. And enables question and answers from the audience about the solution.

Friday, June 28
10:30 - 11:20 am
MFA for Real - reports from the field
Our panel of experts will share their experiences of deploying FIDO solutions at scale. Come and find out how it's done!

Enter your details to receive email updates from Identiverse