Francesco Arena, Senior Security Engineer at doyensec, as he dives deep into protecting your infrastructure against SSO identity provider compromises. Learn how to implement robust security measures in Teleport clusters, understand attack scenarios, and discover practical hardening strategies. This talk covers essential topics like MFA implementation, device trust features, and effective detection & response mechanisms. Perfect for security professionals and infrastructure engineers looking to strengthen their security posture against identity-based attacks.

Links to resources mentioned in the talk:

• Teleport Summary Report https://blog.doyensec.com/2024/06/20/compromised-idp.html
• Full Technical Whitepaper https://www.doyensec.com/resources/Doyensec_Whitepaper_Teleport_PracticalAnalysisHardeningAgainstCompromisedIdP.pdf
• Hardening Checklist https://www.doyensec.com/resources/Doyensec_Teleport_Hardening_Checklist.pdf

Chapter Markers:

0:00 - Introduction and Research Background

5:53 - Understanding IDP Security and Attack Scenarios

11:13 - Core Security Features and MFA Implementation

15:40 - Attribute Manipulation Attacks and Prevention

18:39 - Detection, Response, and Conclusions