DESCRIPTION

On-prem AD and Azure AD both come with options for what authentication protocols will be supported. Making these decisions is key for security, but also for compatibility. In this session we will cover LM, NTLM, NTLMv2, Kerberos, SAML, and AD Kerberos!!! With the recent news on PetitPotam, ADCS, Masky, and more, every organization needs to understand the issues with legacy protocols and where you need to secure your network. When you are done with this session you will understand why each protocol can be exploited, but also understand why you can't eliminate the protocols you want every time.

WHY THE COMMITTEE CHOSE THIS TALK

Attacking on premise AD structures are the most dangerous attack vector of ransomware gangs. Although everybody know this, often old protocols are still in use due to operational issues. This talk will give us more arguments, why we have to improve in term of legacy protocols.

SPEAKER

Derek Melber