An interesting blog post that raises some important points. However, it
includes the statement
Specifically the credential exchange can prove the person presenting the
credential is the same person who it was issued to.
which is not true unless there is a biometric involved in both the
credential and the exchange. Without that, the credential is actually
issued to a public key, not a person. The corresponding private key can be
stolen or, more likely, shared. In that case, the best we can know is who
to hold responsible for the use of the credential, not who actually used it.
--------------
Alan Karp
On Fri, Jan 28, 2022 at 4:54 AM Michael Herman (Trusted Digital Web) <
mwherman@parallelspace.net> wrote:
> Checkout
>
> http://news.windley.com/issues/a-defacto-national-id-from-id-me-technometria-issue-39-997993
>
> Michael Herman
>
> Get Outlook for Android <https://aka.ms/AAb9ysg>
>