Derived Credentials - A Better User Experience for Secure Applications in the Mobile World

Explore the evolution of secure mobile identity management in this 41-minute LASCON conference talk. Learn about derived credentials as a solution to the challenges posed by traditional PKI-based identification models in enterprise and government settings. Discover how NIST standards have adapted to propose a new model that bridges the gap between security and user expectations in the mobile world. Gain insights into PIV derived credentials, their deployment architecture, and various application use cases. Understand the components, philosophy, and challenges associated with implementing derived credentials, including best practices for loading them onto mobile devices. Examine the end-user experience and technical and business-related adoption challenges. Benefit from the expertise of Gemalto's Principal Engineer and Program Manager as they discuss this innovative approach to secure mobile access.

Introduction
Credentials
The mobile world
Personal Identity Verification
Components
Basic
Public apology
Demonstration
Philosophy
HTTP
Challenges