TPAC 2024
Anaheim CA, USA
23–27 SEPTEMBER 2024
Requirement / Recommendation | Description | Examples | Potential Solutions: status |
---|---|---|---|
Dynamic linking | Cryptographic evidence of consent to T&C | EU, US, UK, Australia, India, Japan |
|
Verifier security | RP need to know if authenticator meets reqs at registration and authentication | EU, US, UK, Australia, India, Hong Kong |
|
Requirement / Recommendation | Description | Examples | Potential Solutions: status |
---|---|---|---|
Authentication factors information | Some markets require that a biometric authenticator is systematically used for SCA | EU, US, UK |
|
Device binding | Where 2FA is required, possession factor is preferred for UX or may be required when used with another factor (cf NIST) | EU, US, UK, Japan |
|
Requirement / Recommendation | Description | Examples | Potential Solutions: status |
---|---|---|---|
Privacy / User consent | User consent required for any personal data shared to a third party | EU, USA, Australia, UK, Brazil, India, Canada, Japan, South Africa, Hong Kong |
|
For more details on regulatory context, see presentation from FIME/Worldline