“I assume this is predicated on risk assessments performed by NIST on FIDO implementations”

Until such time as NIST actually publishes anything which it claims to be pursuant to a risk analysis the sceptic in me rules!  We’ve heard it before but seen nothing.

After my note to Mike, I’m wondering if we should go back to calling them “Cryptographic Software Authenticators”

Well I’ve put to good use the time Amanda just gave back, so attached is a revised version of the Notice which has:

1. A prefatory notice about notices and where one is, as reference for final format;
2. Inclusion of the criteria sent earlier today by email;
3. Accommodation of most recent email exchanges which hadn’t made it into a draft text body – now there with a couple of comments/queries.

Until 12-05 …

Richard G. WILSHER
CEO & Founder,  Zygma Inc.
www.Zygma.biz
+1 714 797 9942

From: Amanda Gay [mailto:amanda@kantarainitiative.org]
Sent: Thursday, November 21, 2024 15:58
To: wg-idassurance@kantarainitiative.org
Subject: [WG-IDAssurance] CANCELLED - IAWG - 21 November 2024