![]() macOS Keychain items from Microsoft productsĪccording to Microsoft docs, Keychain plays a central role to store cached tokens which provides SSO between MSAL apps: Overview of the sign-in, token cache flow and potential replay attack paths on macOS devices. Limit token lifetime on non-corporate or non-managed devices.Continuous Access Evaluation (CAE) and Critical Event of User/Sign-in risk.Re-authentication if sign-in risk has been detected.Risk Detection of Azure AD Identity Protection.Using Token Tactics to request refresh and access tokens.Access to token (secrets) from Keychain.Exfiltration and replay of (Primary) Refresh Token.Synchronization of tokens across Apple devices by iCloud Keychain.Cached tokens still alive after sign-out from Edge profile.Security considerations on cached tokens in Keychain. ![]() Microsoft Bing Search and Family Refresh Token.AAD Authenticated Edge Profile and Keychain.macOS Keychain items from Microsoft products. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |