The problem today is that no agreed set of standards exists. We have widely disparate views of what these should be. Everybody has their own favourites. In one camp, we have people who believe the future is a completely new set of digital identity technologies: blockchains, DIDs, new cryptographic algorithms, and the DIDComm protocol stack (which is really little more than S/MIME with onion routing), and those like myself who believe we should build the verifiable credential digital identity eco-system on today’s existing ubiquitous standardised protocols and cryptography, such as X.509, OpenID Connect, W3C Web Authentication (FIDO2) and JWTs.
More FIDO in the News
CNET: World Password Day: We’re closer to ditching this crackable tech
Passkeys promise to be a big help, but until they take hold, we all need…
The Washington Post: Microsoft is changing how you log in to your accounts
Microsoft 365, Copilot and Skype accounts can use “passkeys”, which are more secure than passwords.
Verdict: OneSpan: Partner Ecosystem Profile
The company’s various solutions include regulatory compliance, PSD2 compliance, FIDO standard, fraud prevention, mobile app…
