{"podcast":{"title":"Elixir Wizards","slug":"elixir-wizards","podcast_index_feed_id":674321,"rss_url":"https://feeds.fireside.fm/smartlogic/rss","website_url":"https://smartlogic.fireside.fm","image_url":"https://media24.fireside.fm/file/fireside-images-2024/podcasts/images/0/03a50f66-dc5e-4da4-ab6e-31895b6d4c9e/cover.jpg?v=3","author":"SmartLogic LLC","episode_count":201,"summary":"Elixir Wizards is an interview-style podcast from SmartLogic featuring conversations with developers, engineers, and industry leaders about the Elixir programming language and the broader software development landscape. Each episode explores how modern systems are built, from distributed architectures and infrastructure to developer workflows, security, and emerging technologies like AI. While rooted in the Elixir ecosystem, the show often branches out to compare approaches across languages, platforms, and disciplines. Whether you’re working in Elixir or just interested in how software is evolving, Elixir Wizards offers practical insights and thoughtful perspectives from the people building today’s systems.","last_synced_at":null,"page_url":"https://stenobird.com/podcast/elixir-wizards"},"episode":{"title":"Creating the WebAuthn Components Library for Phoenix LiveView Apps with Owen Bickford","slug":"creating-the-webauthn-components-library-for-phoenix-liveview-apps-with-owen-bickford","published_at":"2024-11-14T11:30:00+00:00","page_url":"https://stenobird.com/podcast/elixir-wizards/creating-the-webauthn-components-library-for-phoenix-liveview-apps-with-owen-bickford","show_page_url":"https://stenobird.com/podcast/elixir-wizards","url":"https://smartlogic.fireside.fm/s13-e05-webauthn-components-phoenix-liveview","audio_url":"https://aphid.fireside.fm/d/1437767933/03a50f66-dc5e-4da4-ab6e-31895b6d4c9e/fcc73e6e-2092-4a59-b47b-52f4a489bed4.mp3","summary":"Explore the transition from vulnerable password-based authentication to the more secure, user-friendly world of passkeys. Learn how the WebAuthnComponents library simplifies implementing hardware-backed, passwordless logins in Phoenix LiveView applications.","meta_description":"Learn how to implement WebAuthn and passkeys in Phoenix LiveView using the WebauthnComponents library to improve security and user experience.","key_points":["Main idea: Passkeys leverage the WebAuthn API and asymmetric cryptography to eliminate the risks of database leaks and credential stuffing","Practical takeaway: Use the WebauthnComponents library to integrate hardware-based authentication like TPMs and Apple Keychain into Elixir apps","Failure mode: Relying solely on passwords leaves users vulnerable to SIM swapping and sophisticated phishing attacks","Implementation detail: The library utilizes Ecto schemas and LiveView components to manage the complex handshake between the browser and server","Strategic advice: Introduce passkeys as an optional, high-security alternative rather than forcing a sudden technology shift on all users"],"chapters":[{"start_ms":60000,"title":"The Evolution of Authentication","summary":"A brief history of moving from plain-text passwords to salted hashes and the inherent security flaws in each stage."},{"start_ms":605000,"title":"Understanding Passkeys and TPMs","summary":"How hardware-based modules like Trusted Platform Modules (TPM) manage credentials securely on modern devices."},{"start_ms":845000,"title":"Library Architecture and Flexibility","summary":"How the WebauthnComponents library uses migrations and configurable schemas to adapt to different application needs."},{"start_ms":1105000,"title":"Asymmetric Cryptography in Practice","summary":"Comparing passkey mechanics to SSH keys and the benefits of public/private key pairs for secure logins."},{"start_ms":1380000,"title":"Integrating WebAuthn into Phoenix","summary":"Using the library as a standalone authentication method within the Phoenix framework."},{"start_ms":1630000,"title":"Managing User Experience and Support","summary":"Strategies for adopting new authentication tech without increasing customer support overhead or user friction."},{"start_ms":2145000,"title":"The WebAuthn Handshake Flow","summary":"A technical walkthrough of managing challenges, attestations, and user creation via LiveView components."}],"topics":["Elixir","Phoenix LiveView","WebAuthn","Passkeys","Asymmetric Cryptography","Cybersecurity","Authentication","Web Development"],"duration_seconds":3452,"processing_state":"processed","actions":[{"name":"request_transcript","method":"POST","url":"https://stenobird.com/v1/public/podcasts/elixir-wizards/episodes/creating-the-webauthn-components-library-for-phoenix-liveview-apps-with-owen-bickford/transcription-requests","description":"Idempotently request low-priority transcript generation for this episode."},{"name":"read_markdown","method":"GET","url":"https://stenobird.com/podcast/elixir-wizards/creating-the-webauthn-components-library-for-phoenix-liveview-apps-with-owen-bickford.md","description":"Read the agent-friendly Markdown representation of this episode resource."}]}}