NIST 800-63-4

ETR-5: Passwordless Authentication with NIST 800-63-4 Lab

ETR-5: Passwordless Authentication with NIST 800-63-4 Lab Overview This lab introduces students to passwordless authentication by configuring Keycloak to use WebAuthn and FIDO2 authenticators. You will create a passwordless login flow, register platform or hardware security keys, and determine whether your implementation aligns with NIST AAL2 or AAL3. This demonstrates how passwordless authentication strengthens Zero Trust identity practices. Lab Instructions 1. Setting Up Your Environment You will need: A Windows, macOS, or Linux machine with a modern browser Docker or a Debian/Ubuntu VM A WebAuthn-capable authenticator such as Windows Hello, Touch ID, or a YubiKey Start Keycloak using Docker: ...

NIST 800-63-4: Why It’s Time to Rethink Passwords and Embrace Modern Authentication

Explains how NIST 800 63-4 updates password and authentication guidelines to emphasize usability, stronger passphrases, and modern multi-factor security.