Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only! Grab it Explore the internals and security aspects of Windows Hello for Business (WHFB) authentication protocol in this 41-minute conference talk from x33fcon. Dive deep into how WHFB credentials function within Azure AD, examining key provisioning processes, technical components, and token requirements. Learn about different WHFB flavors including Azure AD native and hybrid implementations, PIN setup procedures, and cloud Kerberos trust mechanisms. Discover identified vulnerabilities, attack vectors like device code phishing, and lateral movement possibilities within WHFB environments. Understand the implications of key storage, registration processes, and SSO data manipulation while analyzing the security implications of Kerberos Key Trust and TGT upgrade mechanisms.