{"guid":"be3241e8-53ad-5596-b429-33c887d9f149","title":"Enhancing Security with Systemd: Secure Web Tokens and TPM 2.0","subtitle":null,"slug":"all-systems-go-2024-265-enhancing-security-with-systemd-secure-web-tokens-and-tpm-2-0","link":"https://cfp.all-systems-go.io/all-systems-go-2024/talk/9KSPSA/","description":"As the digital landscape evolves, ensuring robust security measures becomes paramount. In this talk, we will explore the implementation of a new systemd service designed to enhance secure web token management through TPM 2.0 and FIDO2 support. This integration facilitates seamless interaction with the xdg-credentials-portal, aiming to provide a straightforward and secure approach to handling credentials.\n\nKey Points:\n\nSystemd Service Implementation: An in-depth look at how we are leveraging systemd to create a secure service for web tokens.\nTPM 2.0 and FIDO2 Integration: Understanding the role of TPM 2.0 and FIDO2 in enhancing hardware security.\nSeamless Integration with xdg-credentials-portal: Demonstrating the ease of use and benefits of integrating with the xdg-credentials-portal for secure credential management.\nNew Functionality in Systemd: Discussing the significance of this new functionality and its potential impact on the systemd community.\nTargeted at systemd developers and enthusiasts, this session will provide valuable insights into the implementation process, the benefits of using TPM 2.0 modules for hardware security, and the overall enhancement of systemd functionalities. Attendees will leave with a clear understanding of the concepts and the practical steps required to integrate these security features into their own projects.\n\nJoin us to explore the future of secure web tokens with systemd and how this integration can simplify and strengthen security protocols in your system architecture.\n\nLicensed to the public under https://creativecommons.org/licenses/by/4.0/de/","original_language":"eng","persons":["Philipp Deppenwiese"],"tags":["265","asg2024","Main Hall","2024","Day 1"],"view_count":103,"promoted":false,"date":"2024-09-25T10:45:00.000+02:00","release_date":"2024-09-25T00:00:00.000+02:00","updated_at":"2026-03-21T18:45:03.758+01:00","length":1460,"duration":1460,"thumb_url":"https://static.media.ccc.de/media/events/all_systems_go/2024/265-be3241e8-53ad-5596-b429-33c887d9f149.jpg","poster_url":"https://static.media.ccc.de/media/events/all_systems_go/2024/265-be3241e8-53ad-5596-b429-33c887d9f149_preview.jpg","timeline_url":"https://static.media.ccc.de/media/events/all_systems_go/2024/265-be3241e8-53ad-5596-b429-33c887d9f149.timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/events/all_systems_go/2024/265-be3241e8-53ad-5596-b429-33c887d9f149.thumbnails.vtt","frontend_link":"https://media.ccc.de/v/all-systems-go-2024-265-enhancing-security-with-systemd-secure-web-tokens-and-tpm-2-0","url":"https://api.media.ccc.de/public/events/be3241e8-53ad-5596-b429-33c887d9f149","conference_title":"All Systems Go! 2024","conference_url":"https://api.media.ccc.de/public/conferences/asg2024","related":[],"recordings":[{"size":55,"length":1460,"mime_type":"video/webm","language":"eng","filename":"asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2024-09-25T14:45:19.387+02:00","recording_url":"https://cdn.media.ccc.de/events/all_systems_go/2024/webm-sd/asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/80151","event_url":"https://api.media.ccc.de/public/events/be3241e8-53ad-5596-b429-33c887d9f149","conference_url":"https://api.media.ccc.de/public/conferences/asg2024"},{"size":126,"length":1460,"mime_type":"video/webm","language":"eng","filename":"asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2024-09-25T14:38:21.085+02:00","recording_url":"https://cdn.media.ccc.de/events/all_systems_go/2024/webm-hd/asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/80149","event_url":"https://api.media.ccc.de/public/events/be3241e8-53ad-5596-b429-33c887d9f149","conference_url":"https://api.media.ccc.de/public/conferences/asg2024"},{"size":43,"length":1460,"mime_type":"video/mp4","language":"eng","filename":"asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2024-09-25T14:22:34.797+02:00","recording_url":"https://cdn.media.ccc.de/events/all_systems_go/2024/h264-sd/asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_sd.mp4","url":"https://api.media.ccc.de/public/recordings/80141","event_url":"https://api.media.ccc.de/public/events/be3241e8-53ad-5596-b429-33c887d9f149","conference_url":"https://api.media.ccc.de/public/conferences/asg2024"},{"size":14,"length":1460,"mime_type":"audio/opus","language":"eng","filename":"asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2024-09-25T14:20:39.926+02:00","recording_url":"https://cdn.media.ccc.de/events/all_systems_go/2024/opus/asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_opus.opus","url":"https://api.media.ccc.de/public/recordings/80136","event_url":"https://api.media.ccc.de/public/events/be3241e8-53ad-5596-b429-33c887d9f149","conference_url":"https://api.media.ccc.de/public/conferences/asg2024"},{"size":22,"length":1460,"mime_type":"audio/mpeg","language":"eng","filename":"asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2024-09-25T14:20:24.930+02:00","recording_url":"https://cdn.media.ccc.de/events/all_systems_go/2024/mp3/asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/80135","event_url":"https://api.media.ccc.de/public/events/be3241e8-53ad-5596-b429-33c887d9f149","conference_url":"https://api.media.ccc.de/public/conferences/asg2024"},{"size":133,"length":1460,"mime_type":"video/mp4","language":"eng","filename":"asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2024-09-25T14:19:34.771+02:00","recording_url":"https://cdn.media.ccc.de/events/all_systems_go/2024/h264-hd/asg2024-265-eng-Enhancing_Security_with_Systemd_Secure_Web_Tokens_and_TPM_20_hd.mp4","url":"https://api.media.ccc.de/public/recordings/80132","event_url":"https://api.media.ccc.de/public/events/be3241e8-53ad-5596-b429-33c887d9f149","conference_url":"https://api.media.ccc.de/public/conferences/asg2024"}]}