What Happens When you Type Your Password into Windows?

Published Sep 9, 2020 | Posted in Windows

Have you ever wondered what happens behind the scenes when you type your password into the Windows logon screen and hit enter? Read Article

About Steve Syfuhs

Steve Syfuhs manages the Windows Authentication team at Microsoft.

Kerberos Explained in a Little Too Much Detail

Published Sep 15, 2020

Kerberos is an authenticated key agreement protocol based on the Needham-Schroeder protocol. That's too complicated -- let's break it down a little.

Read Article | Kerberos

Bruce: A Command Line Kerberos.NET Management Tool

Published Sep 11, 2020

A new command line tool called Bruce has been created for managing Kerberos and Kerberos.NET... things.

Read Article | Kerberos.NET

How Authentication Works when you use Remote Desktop

Published Sep 9, 2020

Have you ever wondered how authentication works for things like Remote Desktop?

Read Article | Windows

Examining Kerberos Messages with Fiddler

Published Aug 9, 2020

A new extension has been created that lets users read Kerberos messages within Fiddler.

Read Article | Kerberos

KDC Proxy for Remote Access

Published May 27, 2020

There's a little known feature in Windows called the KDC Proxy that lets clients communicate with KDC servers over an HTTPS channel instead of TCP.

Read Article | Authentication

About Cryptography in Kerberos.NET

Published Jan 10, 2020

The Kerberos.NET library relies on a few cryptographic primitives for Kerberos. This post describes what those primitives are and how they're used.

Read Article | Kerberos

Cross Platform Support for Kerberos.NET

Published Dec 30, 2019

Kerberos.NET is built to be used across multiple platforms, however there are some caveats.

Read Article | Kerberos.NET

A Deep Dive into the Design of Kerberos.NET

Published Dec 23, 2019

The Kerberos.NET library has undergone significant redevelopment over the last year and has introduced many new features across both client and server.

Read Article | Kerberos

Why is Kerberos Terrible?

Published Dec 31, 2018

Tl;dr; It’s really not. As we build new protocols we should remember all the things we got right with Kerberos and account for all the things we got wrong.

Read Article | Authentication

On Token Binding

Published Aug 21, 2018

Token Binding is an incredibly important step in protecting your identity on the internet.

Read Article | Development

Creating Custom Windows Credential Providers in .NET

Published Oct 15, 2017

Credential Providers transfer user-supplied credentials to the security stack in Windows. They're COM-based, so you can build your own in .NET.

Read Article | Development

Backing Enclave.NET with Azure Key Vault

Published Sep 2, 2017

Protect your secrets managed by Enclave.NET in Azure Key Vault.

Read Article | Development

Creating Authority-Signed Certificates using PowerShell

Published Aug 29, 2017

A quick and easy way to generate authority-signed certificates using just PowerShell.

Read Article | Development

Enclave.NET: A Secure-ish Crypto Execution Module

Published Aug 22, 2017

Here's a foundation to build a module for processing your secrets outside your application.

Read Article | .NET

Blog:	v3.1.9+619aeb64c2
Runtime:	v9.0.0+9d5a6a9aa4