Back to all speakers
Mohamed M. ElKalioby

Mohamed M. ElKalioby

Mohamed ElKalioby a DSF member known for django-mfa2 and django-passkeys, They are starred more than 575 times and downloaded round 500 thousands time combined. He was a member in DjangoCon EU porto 2022 content comittee, also, a speaker in DjangoCon US 2023. His main focus about user authentication and security as he works as team lead for Genomic Medicine Center of Excellence inside King Faisal Specialist Hospital and Research Centre which handles patients’ data.

State-of-the-art in User Authentication

Talk
In the last few years, User authentication has witnessed alot of changes, we moved from just username and password, to second factor authentication, then came passkeys which is an evolution to Web Authentication API, allowing the users to login by their private key on any device, especially it is backed by Google, Apple and Microsoft. In March 2026, Google Chrome is launching ‘Immediate Mediation for Passkeys and Passwords’ which allows the user to login to a website/web application without the need to use a sign-in form (if the browser has a username/password or a passkey available in the browser). In this 30 minutes talk, the following will be covered
  • Basic of User Authentication.
  • Drawback of username and password authentication
  • What is the multi-factor authentication (MFA)?
  • How to use MFA in Django?
  • What is Passkeys? what are the challenges they are trying to solve?
  • How to use Passkeys in Django?
  • What is ‘Immediate Mediation for Passkeys and Passwords’?
  • How can we use ‘Immediate Mediation for Passkeys and Passwords’ in Django