#373 - Going Passkey Phishing with Nishant Kaushik

In this episode of the Identity at the Center podcast, Jeff and Jim discuss various aspects of identity access management (IAM) policies and the importance of having a solid foundation. They emphasize the need for automation, controls, and how IAM policies should be created without technology limitations in mind. The discussion also covers the implementation challenges and the evolving concept of identity verification. Jeff, Jim, and their guest, Nishant Kaushik, the new CTO at the FIDO Alliance, also delve into the issues surrounding the adoption of passkeys, highlighted by Rusty Deaton’s IDPro article, and address some common concerns about their security. Nishant offers insights into ongoing work at FIDO Alliance, the potential of digital identity, and the importance of community in the identity sector. The episode concludes with mentions of upcoming conferences and an homage to the late identity expert, Andrew Nash.

Timestamps

00:00 Introduction and Greetings

00:18 Importance of IAM Policies

01:36 Challenges in Policy Implementation

05:09 Conferences and Discount Codes

07:59 Introducing the Guest: Nishant Kaushik

08:42 The Role of the FIDO Alliance and Digital Identity

10:35 Concerns and Solutions for Passkeys

22:21 Final Thoughts on Passkeys and Authentication

29:48 Credential Security Concerns

30:03 FIDO Members and Their Contributions

30:38 Getting Involved in Working Groups

31:58 Conversations at Authenticate Conference

32:29 Evolution of the Authenticate Conference

34:32 Automotive Authentication Challenges

36:04 Community and Collaboration

38:33 Remembering Andrew Nash

41:41 Lightning Round: Current State of AI and Identity

44:21 Decentralized Identity: Current Trends

49:47 Non-Human Identity: Future Perspectives

52:19 New York Sports Fandom

54:33 Conclusion and Upcoming Events

Connect with Nishant: https://www.linkedin.com/in/nishantkaushik/

Learn more about the FIDO Alliance: https://fidoalliance.org/

IDPro Article by Rusty Deaton: https://idpro.org/blackhat-and-def-con-2025-thoughts/

Kill the Wallet? Rethinking the Metaphors Behind Digital Identity by Heather Flanagan: https://sphericalcowconsulting.com/2025/07/22/digital-wallet-metaphor/

Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/

Visit the show on the web at http://idacpodcast.com