The problem today is that no agreed set of standards exists. We have widely disparate views of what these should be. Everybody has their own favourites. In one camp, we have people who believe the future is a completely new set of digital identity technologies: blockchains, DIDs, new cryptographic algorithms, and the DIDComm protocol stack (which is really little more than S/MIME with onion routing), and those like myself who believe we should build the verifiable credential digital identity eco-system on today’s existing ubiquitous standardised protocols and cryptography, such as X.509, OpenID Connect, W3C Web Authentication (FIDO2) and JWTs.
More FIDO in the News
Forbes: Cyber – The Threat Is Real
This Forbes article reports on how the FIDO Alliance focus on industry standards for two…
Cyberscoop: NIST urged to include multi-factor authentication in cyber framework
In this Cyberscoop article, FIDO Alliance Executive Director Brett McDowell and Jeremy Grant of the…
Cyberscoop: It’s time to put multi-factor authentication in the NIST Cyber Framework
In this article in Cyberscoop, Executive Director Brett McDowell explains why multi-factor authentication is a…
