Posts
2025
Passkeys and Verifiable Digital Credentials: Friends or Foes? @ Identiverse 2025
Presentations
A session at Identiverse 2025 which explores the nuanced dynamics between passkeys and verifiable digital credentials, and their technological foundations across usability, privacy, trust models, and ecosystems with the goal of answering whether passkeys and verifiable digital credentials are friends or foes—and how these technologies might collaboratively shape the future of secure, user-centric digital identity systems.
2024
The Past, Present, and Future of Passkeys @ Internet2 TechEx 2024
Presentations
This talk at Internet2 TechEx 2024 centered on passkeys: their arrival in 2022, how they work, their impact on security and user experience, and what the future holds with federation and digital identity wallets.
Doing Good: A Few of My Favorites (2024 edition)
·538 words·3 mins
Life
As 2024 draws to a close, I’m grateful for the many organizations working tirelessly to make the world a better place. Here are a few nonprofits that have captured my heart and inspired me to give back in 2024.
Peeling back the passkeys onion @ Authenticate 2024
Presentations
a session at Authenticate 2024 which dives into the intricate relationships between websites, browsers, apps, operating systems, passkey providers, and security keys, and each party’s role and impact on user experience and functionality.
Real World Identity on the Web @ TPAC 2024
Presentations
Topics # At TPAC 2023, we introduced the topic of digital identity wallets and their use on the web, and asked the community for use cases, concerns, and asked browser engine maintainers to express interest in this work.
Creating a short link service using Cloudflare Workers KV
·628 words·3 mins
How To
A quick guide on creating a basic short link / redirect service for free using Cloudflare Workers KV
NCCoE Mobile Driver's License (mDL) Webinar - Digital Credentials API
Presentations
an overview of the Digital Credentials API in the context of NIST’s NCCoE mDL program
FedCM 101 @ OSW24
Presentations
FedCM 101 presentation at the OAuth Security Workshop 2024
2023
Passkeys 101 @ Authenticate 2023
Presentations
a session at Authenticate 2023 on the basics of passkeys, phishing resistance, some history, and a look at the future
CAEP Deep Dive: Implementing Session Revocation and Authorization @ Identiverse 2023
Presentations
a session at Identiverse 2023 on using the Continous Access Evaluation Profile with the Shared Signals Framework to signal across different vendor ecosystems changes in session context