Open tkuhrt opened 4 months ago
Thanks Tracy, that's an impressive first take. The paper defines two authentication use cases (which are very relevant), 1/ authenticate to access your wallet and 2/ use your wallet to authenticate towards another service. Hence, I'd suggest that under Technology Enablers we also list FIDO2 next to OAuth/OIDC.
Thanks Tracy, that's an impressive first take. The paper defines two authentication use cases (which are very relevant), 1/ authenticate to access your wallet and 2/ use your wallet to authenticate towards another service. Hence, I'd suggest that under Technology Enablers we also list FIDO2 next to OAuth/OIDC.
Added. Thank you for the feedback.
Excellent document at first review. My only observations is to strengthen the message is that it is implementation independent so things like wholly based cloud wallets are in scope and any number of other form factors we don't even know about yet but will come e.g. embedded in a car, a physical thing that is a cloud wallet not on a mobile etc.