November 13, 2025 by Nick Morgan

Click-by-click guide to enforce phishing-resistant MFA in Entra, with testing, break-glass, and rollout phases.

November 6, 2025 by Nick Morgan

EUDI Wallets are state-backed digital identity wallets defined under eIDAS 2.0 to let users authenticate, assert attributes, and sign with high assurance across borders

October 24, 2025 by Nick Morgan

Design QR login that converts and resists quishing. Patterns, TTLs, bindings, and incident runbooks you can copy.

October 20, 2025 by Max Yakub

If you’re deciding between passkeys/FIDO2, PIV/CAC smart cards, or the WWPass Key for passwordless authentication, start here

October 16, 2025 by Nick Morgan

Phishing-resistant MFA in 2025 means origin-bound, cryptographic authentication that cannot be tricked by fake sites, relayed by adversary-in-the-middle (AiTM) proxies, or approved by push fatigue.

October 9, 2025 by Max Yakub

eIDAS 2.0 upgrades Europe’s digital identity framework with a standardized, interoperable wallet that users can carry on their phone to prove identity, present attributes, and sign transactions across the EU

October 7, 2025 by Nick Morgan

Healthcare IAM lives at the intersection of life-critical clinical workflows and some of the most stringent data protection requirements in the world

October 2, 2025 by Max Yakub

Privileged access management is the discipline and tooling that govern how highly empowered identities, human administrators, third-party operators, service principals, machine and workload identities, obtain, use, and relinquish elevated rights

September 30, 2025 by Nick Morgan

Distributed key management is the practice of generating, storing, using, rotating, and retiring cryptographic keys across multiple systems, regions, and sometimes even clouds, without ever centralizing trust in a single operator, machine, or …