Tim Cappalli

A session at Authenticate 2025 which explores the nuanced dynamics between passkeys and verifiable digital credentials, and their technological foundations across usability, privacy, trust models, and ecosystems with the goal of answering whether passkeys and verifiable digital credentials are friends or foes—and how these technologies might collaboratively shape the future of secure, user-centric digital identity systems.

Passkeys promise to replace passwords with a simpler, more secure login experience, but myths and confusion still hold many organizations back. This session at Authenticate 2025 tackles some commonly heard questions and misconceptions about passkeys and breaks down the facts in clear, practical terms. You’ll walk away with a solid understanding of what passkeys really solve, what they don’t, and how to approach adoption with confidence.

A very short guide on increasing the leaf certificate lifetime for Caddy’s internal CA.

A session at Identiverse 2025 which explores the nuanced dynamics between passkeys and verifiable digital credentials, and their technological foundations across usability, privacy, trust models, and ecosystems with the goal of answering whether passkeys and verifiable digital credentials are friends or foes—and how these technologies might collaboratively shape the future of secure, user-centric digital identity systems.

This talk at Internet2 TechEx 2024 centered on passkeys: their arrival in 2022, how they work, their impact on security and user experience, and what the future holds with federation and digital identity wallets.

As 2024 draws to a close, I’m grateful for the many organizations working tirelessly to make the world a better place. Here are a few nonprofits that have captured my heart and inspired me to give back in 2024.