Checkpoint Research Details Flaw in Fortnite SSO
The Checkpoint blog reveals a great breakdown of a flaw in the SSO infrastructure used by the game Fortnite. SSO and other federated authentication platforms can be a double-edged sword. Developing any authentication system is very hard, web-based authentication especially so. You have competing requirements for interoperability and security with little control over the software extensions a user may elect to use or install on top of their browser. Using an authentication mechanism can offload much of this complexity to widely used services provided by companies who have a great deal more resources to throw at the problem.
Latest posts by Stephen Crim (see all)
- Armis Breaks Down Vulnerabilities in the Internet of Things - January 30, 2019
- Checkpoint Research Details Flaw in Fortnite SSO - January 22, 2019
- Low Hanging Fruit: Credential Re-Use Vectors and Password Management - September 24, 2018