December 09 - 11, 2019
Westin Tampa Waterside, Tampa, FL
Michael Duff, Chief Information Security Officer at Stanford University
Stanford University Logo

Michael Duff


Chief Information Security Officer
Stanford University

Check out the incredible speaker line-up to see who will be joining Michael.

Download The Latest Agenda

Monday, December 09, 2019

Monday, December 9th, 2019


1:50 PM Going Passwordless @ Stanford to Improve User Experience

Realizing our long-term vision of strong user authentication coupled with endpoint security posture enforcement at Stanford; last year we deployed the final component: client certificates that strongly authenticate both the user and the device. We'll describe the underlying systems and key design decisions while highlighting lessons we learned along our six-year journey. Join us to hear this rare story of dramatically improving security and user experience simultaneously, and learn how you can replicate this success with a fraction of the resources.

  • Understand the benefits of identity-aware, application layer endpoint security posture enforcement coupled with client certificate-based authentication 
  • Learn how to architect the systems necessary to implement your own version of Stanford's Cardinal Key service 
  • Explore the keys to a successful implementation and rollout along with the potential pitfalls

Wednesday, December 11, 2019

Wednesday, December 11th, 2019


11:30 AM Going Passwordless @ Stanford

Realizing our long-term vision of strong user authentication coupled with endpoint security posture enforcement at Stanford; last year we deployed the final component: client certificates that strongly authenticate both the user and the device. We'll describe the underlying systems and key design decisions while highlighting lessons we learned along our six-year journey. Join us to hear this rare story of dramatically improving security and user experience simultaneously, and learn how you can replicate this success with a fraction of the resources.

  • Understand the benefits of identity-aware, application layer endpoint security posture enforcement coupled with client certificate-based authentication 
  • Learn how to architect the systems necessary to implement your own version of Stanford's Cardinal Key service 
  • Explore the keys to a successful implementation and rollout along with the potential pitfalls


11:30 AM Going Passwordless @ Stanford

Realizing our long-term vision of strong user authentication coupled with endpoint security posture enforcement at Stanford; last year we deployed the final component: client certificates that strongly authenticate both the user and the device. We'll describe the underlying systems and key design decisions while highlighting lessons we learned along our six-year journey. Join us to hear this rare story of dramatically improving security and user experience simultaneously, and learn how you can replicate this success with a fraction of the resources.

  • Understand the benefits of identity-aware, application layer endpoint security posture enforcement coupled with client certificate-based authentication 
  • Learn how to architect the systems necessary to implement your own version of Stanford's Cardinal Key service 
  • Explore the keys to a successful implementation and rollout along with the potential pitfalls