The problem today is that no agreed set of standards exists. We have widely disparate views of what these should be. Everybody has their own favourites. In one camp, we have people who believe the future is a completely new set of digital identity technologies: blockchains, DIDs, new cryptographic algorithms, and the DIDComm protocol stack (which is really little more than S/MIME with onion routing), and those like myself who believe we should build the verifiable credential digital identity eco-system on today’s existing ubiquitous standardised protocols and cryptography, such as X.509, OpenID Connect, W3C Web Authentication (FIDO2) and JWTs.


More

Cashy’s Blog: TikTok now also supports passkeys for login on iOS

The short video platform TikTok has announced that it will also be possible to log…

Read More →

B2B Cyber Security: Best practices for zero trust

Replacing traditional MFA with strong, passwordless authentication methods allows security teams to build the first…

Read More →

ComputerWeekly: The management level in companies must actively live IT security

FIDO Alliance’s Andrew Shikiar shares his view on how cyber security is often viewed as…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.