BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//pretalx//cfp.all-systems-go.io//all-systems-go-2024//UX9WJR
BEGIN:VTIMEZONE
TZID:CET
BEGIN:STANDARD
DTSTART:20001029T040000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=10
TZNAME:CET
TZOFFSETFROM:+0200
TZOFFSETTO:+0100
END:STANDARD
BEGIN:DAYLIGHT
DTSTART:20000326T030000
RRULE:FREQ=YEARLY;BYDAY=-1SU;BYMONTH=3
TZNAME:CEST
TZOFFSETFROM:+0100
TZOFFSETTO:+0200
END:DAYLIGHT
END:VTIMEZONE
BEGIN:VEVENT
UID:pretalx-all-systems-go-2024-JCJ9YT@cfp.all-systems-go.io
DTSTART;TZID=CET:20240926T151500
DTEND;TZID=CET:20240926T155500
DESCRIPTION:Strong authentication requires multiple signals: identity claim
 s proves that identity of the person\, while device attestation proves pos
 session of a given machine\, and device bound keys prevent the key from be
 ing stolen.\n\nIn this presentation we will take a look at how the TPM pro
 vides device attestation and device bound keys. We will connect this with 
 identity claims from SSO providers to provide a centrally managed short-li
 ved SSH certificates for users and their devices. This is implemented as a
 n open-source project called “ssh-tpm-ca-authority”.
DTSTAMP:20260315T022727Z
LOCATION:Dome
SUMMARY:SSH authentication using user and machine identities - Morten Linde
 rud
URL:https://cfp.all-systems-go.io/all-systems-go-2024/talk/JCJ9YT/
END:VEVENT
END:VCALENDAR