Protecting Against Credential and Token Theft

In this video I look at credential and token theft and what we can do to protect.

🔎 Looking for content on a particular topic? Search the channel. If I have something it will be there!

🤔 Due to the channel growth and number of people wanting help I no longer can answer or even read questions and they will just stay in the moderation queue never to be seen so please post questions to other sites like Reddit, Microsoft Community Hub etc.

▬▬▬▬▬▬ C H A P T E R S ⏰ ▬▬▬▬▬▬
00:00 – Introduction
00:49 – Credential protection
05:46 – Authentication strengths
07:32 – Protection for strong authentication method registration
08:54 – Additional protections
11:56 – Shift to token theft
12:19 – Tokens we get
13:24 – Secrets on the machine
15:45 – Primary Refresh Token
17:42 – Session Key
19:21 – Refresh and Access Tokens
21:51 – Token theft
24:02 – Protections
24:22 – Entra Internet Access
26:13 – Machine management
29:21 – Token binding
32:20 – Proof of Possession
37:50 – Token brokers and MSAL
39:41 – Requiring token binding
41:59 – Demonstrated Proof of Possession standard
45:13 – Detection
45:42 – Continuous Access Evaluation
46:39 – Identity Protection
48:16 – Summary
51:35 – Close

▬▬▬▬▬▬ K E Y L I N K S 🔗 ▬▬▬▬▬▬
► Whiteboard:
🔗 https://raw.githubusercontent.com/johnthebrit/RandomStuff/master/Whiteboards/CredentialandTokenTheft.png
► Token Protection
🔗 https://learn.microsoft.com/entra/identity/conditional-access/concept-token-protection
🔗 https://techcommunity.microsoft.com/t5/microsoft-entra-blog/public-preview-token-protection-for-sign-in-sessions/ba-p/3815756

▬▬▬▬▬▬ Want to learn more? 🚀 ▬▬▬▬▬▬
📖 Recommended Learning Path for Azure
🔗 https://learn.onboardtoazure.com
🥇 Certification Content Repository
🔗 https://github.com/johnthebrit/CertificationMaterials
📅 Weekly Azure Update
🔗 https://youtube.com/playlist?list=PLlVtbbG169nEv7jSfOVmQGRp9wAoAM0Ks
☁ Azure Master Class
🔗 https://youtube.com/playlist?list=PLlVtbbG169nGccbp8VSpAozu3w9xSQJoY
⚙ DevOps Master Class
🔗 https://youtube.com/playlist?list=PLlVtbbG169nFr8RzQ4GIxUEznpNR53ERq
💻 PowerShell Master Class
🔗 https://youtube.com/playlist?list=PLlVtbbG169nFq_hR7FcMYg32xsSAObuq8
🎓 Certification Cram Videos
🔗 https://youtube.com/playlist?list=PLlVtbbG169nHz2qfLvPsAz9CnnXofhmcA
🧠 Mentoring Content
🔗 https://youtube.com/playlist?list=PLlVtbbG169nGHxNkSWB0PjzZHwZ0BkXZZ
❔ Questions? Maybe I answered it in my FAQ
🔗 https://savilltech.com/faq
👕 Cure Childhood Cancer Charity T-Shirt Channel Store
🔗 https://johns-t-shirts-store.creator-spring.com/

👂 Enable the subtitles and from there you can translate to your native language via the auto-translate feature in settings! https://youtu.be/v5b53-PgEmI for a demo of using this feature.

SUBSCRIBE ✅ https://www.youtube.com/channel/UCpIn7ox7j7bH_OFj7tYouOQ?sub_confirmation=1

#microsoft #passkeys #johnsavillstechnicaltraining