Upcoming

W3C Credentials Community Group has a new APAC friendly time. CCG is a great community and reach out to Will Abramson if you want to share/present your work.Credentials Community Group at the W3C has started an APAC Friendly Call!

• 8th of October: Turing Certs

• 15th of October: Bhutan National Digital Identity Implementation

• 22nd of October: A microcredential ecosystem

• German “EUDI Wallet Prototypes“: The Use Cases-Conference Berlin and Online October 14th, 2025

• Registration Open for OpenID Foundation Hybrid Workshop at Cisco on Mon 20th October 2025

• Internet Identity Workshop #41 October 21-23 Mountain View California

• Agentic Internet Workshop* October 24th Mountain View California (*Inspired IIW by and hosted by the IIW Foundation

On the internet, nobody knows your a bot”

Source: https://ia.net/topics/domo-arigato-mr-roboto-tell-us-your-secret

Companies

(SAP) Transferring Verifiable Credentials with the Eclipse Dataspace Decentralized Claims Protocol (DCP)

In the era of Self-sovereign Identity (SIS), verifiable credentials (VCs) are becoming a cornerstone. Organizations and individuals can now issue, request, and present attestations without relying on a central authority, enabled by emerging standards and protocols such as the Decentral Claims Protocol (DCP).

Government ID

UK’s Mandatory Digital ID Scheme Sparks Debate on Centralization vs. Web3 Privacy

The UK government’s plan for a mandatory Digital ID by 2029 for all workers has ignited a critical debate, with privacy advocates warning of security risks and potential surveillance, while proponents suggest a well-designed system could enhance security and efficiency.

Recognizing British Columbia’s Leadership in Connected, People-Centred Services

DIACC is proud to recognize British Columbia’s leadership as it launches Connected Services BC, a bold step toward creating simpler, more secure, and more responsive government services for people and businesses.

Australian Digital Trust Community Group responds to Productivity Commission’s Digital Technology Report

The official submission to Australia’s Productivity Commission, including the letter and the exhibit with details on all the areas that the ADT CG has provided feedback on, can be found HERE.

Death and Identity

Whitepaper open for comment: The Unfinished Digital Estate: Culture, Law, and Technology After Death

A comprehensive new research paper is now open for public comment: “The Unfinished Digital Estate: Culture, Law, and Technology After Death.” This paper, published by the OpenID Foundation, addresses the growing complexity of digital estate management, moving beyond traditional financial assets to encompass the full spectrum of our digital lives – from our email accounts, shared photos, and creative work to the emergent class of AI-generated content that may both perform and outlive us.

Organization News

DIF at the UN: Bringing Decentralized Identity and AI to the Global Stage

Today, two Decentralized Identity Foundation (DIF) members brought their expertise to an influential global audience at Digital@UNGA, a high-level event convened by the ITU, UNDP and WDTA during the 80th UN General Assembly.

Compact smart contract language is now Minokawa, newest LF Decentralized Trust project

Minokawa joins the LFDT project ecosystem as an established codebase and with an existing user base. It was designed under the Compact brand with a clear set of goals: to make zero-knowledge smart contract development accessible, secure, and practical for real-world applications. Compact’s features and capabilities are now at the core of Minokawa.

(MyData) Your health, your data: A personal health account for healthcare

What if managing your health data was as intuitive and empowering as online banking? What if you could decide who sees your medical records, when, and for what purpose—with just a few clicks?
That’s the vision behind the Hippo Health Account, a new personal health data
service developed by Finnish HealthTech company HippocrAItes Oy. Designed to
meet the requirements of the European Health Data Space (EHDS), the platform
puts individuals in control of their health data—consolidating information from
national registries, private providers, and smart devices into a single, secure view.

AI and Identity

Human Colossus Joins “SNV on Tour” at EPFL — Deepfake Trust & Verification

On September 23, Human Colossus participated in SNV on Tour at EPFL, an event organized by the Swiss Association for Standardization (SNV). This year’s event focused on artificial intelligence and deepfakes, two of the most pressing challenges in today’s digital landscape.

Announcing Auth0 for AI Agents: Powering the Future of AI, Securely

Auth0 for AI Agents will be generally available (GA) in October. Based on our findings during the Developer Preview, our product will be more ready than ever to help builders better secure their AI agents with just a few lines of code.

Introducing the Okta MCP Server

The Okta MCP Server brings this capability to your identity and access management workflows. It connects directly to Okta’s Admin Management APIs, giving your LLM agents the ability to safely automate organization management.

Think of it as unlocking a new interface for Okta, one where you can ask an agent:

• Add this new employee to the engineering group.”

• “Generate a report of inactive users in the last 90 days.”

• “Deactivate all users who tried to log in within the last 30 minutes.”

[Market Research] Are AI Agents a threat to all industries or just another digital tool?

The research showed a concerning 82% of companies were now utilising AI agents, with more than half reporting these agents access sensitive data daily. Alarmingly, 80% of organisations have experienced unintended actions from their AI agents, including inappropriate data sharing and unauthorized system access.

Fun

(Heather Flanagan) Pirates, Librarians, and Standards Development

“With the right motivation, even I will write a blog post on a dare. And the dare I got today was to write a post about what librarians and pirate captains have in common, and why it matters for standards development.”

Reducing Confusion Department

[Whte Paper] (FIDO) Passkeys and Verifiable Digital Credentials: A Harmonized Path to Secure Digital Identity

Around the world, government entities are currently working to create and implement their digital identity strategies, which includes issuing verifiable digital credentials (VDCs) to their citizens. As a result of these initiatives, organizations are also beginning to discuss using VDCs as a primary form of authentication. VDCs are an important part of verifying a user’s identity that can be used alongside FIDO’s passkeys, which provide a primary authentication mechanism that is fast, safe, and reliable. Passkeys should be issued after a citizen’s VDC is presented for identity verification. This paper will discuss how VDCs and passkeys should coexist when implementing authentication for citizens.

Research

[Research - Thesis] A decentralized framework for government issued NID using self sovereign identity

Traditional centralized identity systems suffer from critical vulnerabilities including data breaches, lack of user control, and poor interoperability, making them inadequate for modern digital identity needs in public services and national security. This paper presents a blockchain-based decentralized identity framework that transforms government-issued National IDs into Verifiable Credentials following Self-Sovereign Identity principles, demonstrating through Ethereum smart contract implementation that citizens can maintain full control over their credentials while achieving enhanced privacy, security, and interoperability compared to conventional systems like OAuth 2.0 and SAML.

[Research] A Blockchain- and Self-Sovereign Identity-Based Collaborative Framework for Secure and Verifiable Cross-Organizational Data Sharing in Smart Irrigation

While smart farming offers significant benefits for water management, climate resilience, and agricultural sustainability, its adoption is hindered by high costs, technical barriers, and concerns over data ownership, with existing data-sharing solutions being fragmented, centralized, or inadequately scalable. This paper presents a blockchain-based framework integrating smart contracts, Decentralized Identifiers (DIDs), and Verifiable Credentials within a Self-Sovereign Identity system to enable secure, fine-grained cross-organizational data sharing in agriculture, demonstrated through a weather data sharing implementation using Davis Vantage Pro2 stations that provides farms with controlled access to local meteorological data while maintaining data sovereignty and interoperability across heterogeneous agricultural databases.

[Reserach] The emergence of digital innovations in the pre-emergence phase of self-sovereign identity in Finland

Digital innovations (DIs) affect individuals, organisations, industries, and economies. However, the extant literature lacks an understanding of how DIs emerge and how they shape their environment in the very early, pre-emerging phase of a technology, where the technology can influence many industries. To understand the pre-emerging phase, we employ stage-based modelling by analysing rich qualitative data in the context of self-sovereign identity (SSI) technology. Our results identify the interoperability (i.e., the ability of multiple systems to interact with each other) requirement of DIs as a shaping factor of their emergence. Further, we propose a stage model that explains the emergence of SSI-facilitated DIs and an SSI innovation-fostering environment. The model consists of three qualitatively different stages with stage-specific salient questions, mechanisms, and outcomes. This work primarily contributes to the DI literature in the SSI context and has policy and practical implications for regulators and other practitioners.

[Research] How can the holder trust the verifier? A CP-ABPRE-based solution to control the access to claims in a Self-Sovereign-Identity scenario

While Self-Sovereign Identity (SSI) systems enable users to control their digital credentials and allow verifiers to validate claims, current solutions focus only on one-way verification and fail to ensure that verifiers are properly authorized to access holders’ sensitive claims. This paper presents an innovative SSI solution that combines decentralized wallets with Ciphertext-Policy Attribute-Based Proxy Re-Encryption (CP-ABPRE) and Ethereum smart contracts to enable bidirectional authorization, ensuring both claim verification and verifier authorization while maintaining accountability through blockchain notarization, with a working prototype demonstrating its practical feasibility and efficiency.

eu-LISA Publishes Latest Research on Identity Management Technologies

eu-LISA has released its latest Research and Technology Monitoring Report, focusing on the fast-evolving field of identity management technologies in the context of international travel, migration and border security. The report provides a comprehensive overview of how innovations in this area are shaping the way people’s identities are established, verified and managed, both in Europe and globally.