Virtual Cybersecurity Policy Forum: Identity, Authentication and the Road Ahead
1月 25 @ 9:00 am – 5:00 pm EST
2023 brings a new year and a new Congress – but America is still struggling with many of the same old problems when it comes to digital identity and authentication. Passwords keep getting phished, new account fraud keeps growing, and companies and consumers continue to struggle to prove that they are not a proverbial “dog on the Internet.” It’s becoming a major policy concern – and policymakers are considering a number of new initiatives to better protect people and combat these trends.
On January 25th, join us virtually as the Better Identity Coalition, the FIDO Alliance, the ID Theft Resource Center (ITRC) come together to present a policy forum looking at “Identity, Authentication, and the Road Ahead.”
This policy forum will bring together leaders from government, industry, and non-profits to discuss topics including:
- The release of the ID Theft Resource Center Annual Data Breach Report
- The impact of identity-related cybercrime on industry and government over the last year
- The human toll of identity theft – and the need to build inclusive digital identity systems that work for everyone
- What to expect from the new Congress and the Biden Administration in 2023
- Updates on new products and standards like FIDO that can make identity and authentication both more secure and easier to use
- Discussions on what can be done to drive better identity infrastructure in America
|9:00AM||Intro and Welcome: Jeremy Grant, Managing Director, Technology Business Strategy at Venable LLP and Coordinator, Better Identity Coalition|
|9:10AM||Opening Keynote: TBD|
|9:30AM||Keynote: Release of the Annual ITRC Data Breach Report – James Lee, ITRC COO|
|10:00AM||Panel: Data Breach Notices Suck|
One of the trends related to data breaches in 2022 was the dramatic rise in notices with little or no actionable information after more than a decade of highly detailed alerts. Does a lack of breach information create risk for businesses and individuals? Why the sudden lack of transparency in breach notices? The panel will explore these issues and how to improve breach alerts.
James Lee – Moderator
John Breyault – National Consumers League
Paul Bond – Holland & Knight
Kim Sutherland – Lexis Nexis
|11:00AM||Spotlight Session: Identity, the Individual and Inclusion|
Understanding how individuals in different communities use, maintain, protect and recover their identity will ensure culturally competent service provision for all identity theft and fraud victims. The ITRC and the Black Researchers Collective will discuss recently released preliminary findings of a larger three-year initiative that seeks to understand and examine identity crime victimization across black communities in the United States.
Eva Velasquez – ITRC
Glenance Green – Black Researchers Collective
|11:30AM||The Victim Experience: Fireside chat with Jessica Roy, LA Times & Eva Velasquez ITRC|
Identity theft and fraud rates have increased dramatically in recent years. Understanding the victim experience should be in the forefront of every decision maker’s mind when developing and implementing technology and policy solutions. Data from the ITRC’s most recent Consumer Impact Report will be shared during a conversation with Jessica Roy, who documented her experiences as the victim of a complex identity fraud case with persistent thieves.
|12:40PM||Lunchtime Keynote: Congressman Bill Foster|
|1:00PM||Panel: Tackling Equity and Bias Concerns in Identity Proofing |
As our transactions continue to move online – and criminals follow – the use of remote identity proofing solutions that can block many identity-centric cyberattacks is increasing. But with this trend, we are also seeing that some tools used here do not work equitably for all people. This panel will discuss the challenge, as well as ways that new systems can be architected to maximize inclusion.
Moderator – Elizabeth Bynum – Beeck Center for Social Impact & Innovation at Georgetown University
Dr. Stephanie Schuckers – Director of the Center for Identification Technology Research (CITeR), Clarkson University
Andrew Stettner – Deputy Director for Policy at Office of Unemployment Insurance Modernization, Department of Labor
Jordan Burris – VP and Head of Public Sector Strategy – Socure
|1:45PM||FIDO Keynote: Andrew Shikiar, FIDO Alliance|
|2:05PM||Panel: Passkeys and the Future of Passwordless Authentication|
Everyone agrees it’s time to kill the password, but the question of “with what” makes things a bit trickier. Passkeys built on FIDO standards are perhaps the most promising new tool entering the market. This panel will discuss what passkeys are, explore how they differ from passwords and other types of authentication, and explore what government and industry can both do to hasten their adoption.
Megan Shamas – FIDO Alliance – Moderator
Andrew Regenscheid – Lead for Hardware-Rooted Security, NIST Computer Security Division
Tim Cappalli – Identity Standards Architect – Microsoft
Paul Grassi – Principal Product Manager – Identity Services – Amazon
Christiaan Brand – Product Manager – Identity and Security – Google
|3:00PM||Panel: Better Identity in 2023 – What do we need to make it happen? |
Last year saw significant legislative action on digital identity: Congress tasked NIST with creating new guidance for Federal, state and local agencies looking to provide identity validation services, and nearly passed the Improving Digital Identity Act. Meanwhile, a number of states took the plunge in launching mobile Driver’s License (mDL) apps that provide a digital counterpart to plastic IDs. With a new Congress getting underway, this panel will explore what might be possible on the Hill and in the executive branch in 2023.
Moderator – Jeremy Grant, Better Identity Coalition
David Dorfman – Senate Homeland Security and Governmental Affairs Committee
Chris Land – General Counsel – Senator Cynthia Lummis
Jason Lim – TSA/DHS Identity Management Capability Manager
|3:45PM||Panel 5: The Role of Better Identity in Enabling Personal Control of Financial Data |
Today is the deadline for industry comments to CFPB on their proposal to create regulations under Section 1033 of the Dodd-Frank Act to strengthen consumers’ access to, and control over, their financial data. Given the high value of this data – and the range of cyber attacks on financial firms tied to exploiting weaknesses in identity and authentication – it will be essential for CFPB to get the identity and authentication elements of these regulations right. This panel will explore the issues at play.
Moderator – Jeremy Grant
Natalie Talpas – SVP, Head of Strategy and Emerging Payments, Digital and Payments, PNC Bank
Zoe Strickland – Senior Fellow, FPF
Gail Hodges – Executive Director – Open ID Foundation
|4:30PM||Closing Keynote: Jimmy Kirby – Acting Deputy Director, FinCEN|