Authentication Demystified: Basic Auth to Web Tokens in 45 minutes

Have you ever searched for "how to authenticate an API call" and been confused by the dizzying array of techniques, terminology, jargon, and acronyms that come back? This session is designed for anyone that's struggling to make sense of modern authentication options. You'll learn the differences between OAuth, API Keys, HMAC, JSON Web Tokens (JWT), SAML, OpenID Connect, and passkeys using Webauthn. Each technique will be explained in a clear, practical, easy-to-understand way. This session focuses on core concepts, not code, and is accessible to anyone that works with technology.