tag: passkeys

identity OpenID Public policy

Public comments have been submitted to the Financial Services Agency regarding the partial revision (draft) of the "Comprehensive Supervision Guidelines for Financial Instruments Business Operators, etc."

Nat 2025-08-19 No Comments

The US OpenID Foundation has submitted the following public comments regarding the proposed revisions to the "Comprehensive Supervision Guidelines for Financial Instruments Business Operators, etc." (← addressing so-called securities fraud). The US OpenID Foundation website is only available in English, so there is no appropriate space to post the Japanese version.

Further display Public comments have been submitted to the Financial Services Agency regarding the partial revision (draft) of the "Comprehensive Supervision Guidelines for Financial Instruments Business Operators, etc."
The Financial Services Agency amends its supervisory guidelines. Phishing-resistant authentication methods will become mandatory. It's not biometric authentication as some articles say!
identity Security

The Japanese Financial Services Agency amends supervisory guidelines. Phishing-resistant authentication methods will become mandatory. It is not biometric authentication as some media say, however! Public comments are open until August 8th.

Nat 2025-07-16 Comment

On the 15th, the Financial Services Agency began accepting public comments under the title "Publication of a partial revision (draft) of the "Comprehensive Supervision Guidelines for Financial Instruments Business Operators, etc." The deadline is 18:17 PM on Monday, August 00th (must arrive by this date). This case concerns the theft of customer information (login IDs, etc.) from phishing sites disguised as securities company websites...

Further display The Japanese Financial Services Agency amends supervisory guidelines. Phishing-resistant authentication methods will become mandatory. It is not biometric authentication as some media say, however! Public comments are open until August 8th.
The threat of real-time phishing that cannot be prevented by one-time passwords - The true nature of phishing resistance using passkeys
identity Security

The threat of real-time phishing that cannot be prevented by one-time passwords - The true nature of phishing resistance using passkeys

Nat 2025-06-20 No Comments

In recent years, phishing attacks targeting financial institutions and other organizations have become more sophisticated, and a method called "real-time phishing" in particular has become a serious threat. This type of attack can even invalidate one-time passwords (OTPs), which have traditionally been considered effective in preventing phishing attacks.

Further display The threat of real-time phishing that cannot be prevented by one-time passwords - The true nature of phishing resistance using passkeys
Is that QR code safe? ~ Threats and countermeasures lurking in cross-device authentication and authorization flows
OAuth OpenID

[Announcement] Is that QR code safe? ~ Threats and countermeasures lurking in cross-device authentication and authorization flows [YouTube Live]

Nat 2024-08-15 No Comments

On Thursday, August 8nd, from 22pm, we will be hosting a YouTube Live broadcast with @ritou, also known as Akita's cat, titled "Is that QR code safe? Threats and countermeasures lurking in cross-device authentication and authorization flows." Logging in with QR codes is becoming more and more common. But is that...

Further display [Announcement] Is that QR code safe? ~ Threats and countermeasures lurking in cross-device authentication and authorization flows [YouTube Live]
Events OpenID

Detailed notes on passkeys and ID federation – OpenID Summit 2024

Nat 2024-01-19 No Comments

This is a summary of @ritou's presentation at OpenID Summit 2024 (2024-01-19). Summary: This document is based on the presentation materials by @ritou at OpenID Summit Tokyo 2024, and explains the relationship between passkeys and ID federation, their respective characteristics, their mutual complementarity, and related specifications.

Further display Detailed notes on passkeys and ID federation – OpenID Summit 2024