#373 - Going Passkey Phishing with Nishant Kaushik
Identity at the Center15 Syys 2025

#373 - Going Passkey Phishing with Nishant Kaushik

In this episode of the Identity at the Center podcast, Jeff and Jim discuss various aspects of identity access management (IAM) policies and the importance of having a solid foundation. They emphasize the need for automation, controls, and how IAM policies should be created without technology limitations in mind. The discussion also covers the implementation challenges and the evolving concept of identity verification. Jeff, Jim, and their guest, Nishant Kaushik, the new CTO at the FIDO Alliance, also delve into the issues surrounding the adoption of passkeys, highlighted by Rusty Deaton’s IDPro article, and address some common concerns about their security. Nishant offers insights into ongoing work at FIDO Alliance, the potential of digital identity, and the importance of community in the identity sector. The episode concludes with mentions of upcoming conferences and an homage to the late identity expert, Andrew Nash.


Timestamps

00:00 Introduction and Greetings

00:18 Importance of IAM Policies

01:36 Challenges in Policy Implementation

05:09 Conferences and Discount Codes

07:59 Introducing the Guest: Nishant Kaushik

08:42 The Role of the FIDO Alliance and Digital Identity

10:35 Concerns and Solutions for Passkeys

22:21 Final Thoughts on Passkeys and Authentication

29:48 Credential Security Concerns

30:03 FIDO Members and Their Contributions

30:38 Getting Involved in Working Groups

31:58 Conversations at Authenticate Conference

32:29 Evolution of the Authenticate Conference

34:32 Automotive Authentication Challenges

36:04 Community and Collaboration

38:33 Remembering Andrew Nash

41:41 Lightning Round: Current State of AI and Identity

44:21 Decentralized Identity: Current Trends

49:47 Non-Human Identity: Future Perspectives

52:19 New York Sports Fandom

54:33 Conclusion and Upcoming Events


Connect with Nishant: https://www.linkedin.com/in/nishantkaushik/

Learn more about the FIDO Alliance: https://fidoalliance.org/

IDPro Article by Rusty Deaton: https://idpro.org/blackhat-and-def-con-2025-thoughts/

Kill the Wallet? Rethinking the Metaphors Behind Digital Identity by Heather Flanagan: https://sphericalcowconsulting.com/2025/07/22/digital-wallet-metaphor/


Connect with us on LinkedIn:

Jim McDonald: https://www.linkedin.com/in/jimmcdonaldpmp/

Jeff Steadman: https://www.linkedin.com/in/jeffsteadman/


Visit the show on the web at http://idacpodcast.com

Jaksot(408)

#408 - AI vs AI with Joseph Carson

#408 - AI vs AI with Joseph Carson

Jeff and Jim welcome Joseph Carson, cybersecurity expert and host of the Security by Default podcast, for a conversation on AI in offensive and defensive security. Joseph shares the real-world inciden...

16 Maalis 1h 3min

#407 - Sponsor Spotlight - Rubrik

#407 - Sponsor Spotlight - Rubrik

This episode features Drew Russell, Identity Resilience Platform Owner at Rubrik. Jim McDonald and Jeff Steadman explore the intersection of backup, recovery, and identity security. Drew explains how ...

11 Maalis 54min

#406 - IDAC MailBag for February 2026

#406 - IDAC MailBag for February 2026

In this MailBag episode, Jeff Steadman and Jim McDonald tackle eight questions submitted by listeners from around the world, including Munich, Sao Paulo, Singapore, Toronto, Hanoi, London, Sydney, and...

9 Maalis 1h 4min

#405 - RSM 2026 Attack Vectors Report

#405 - RSM 2026 Attack Vectors Report

Jeff and Jim sit down with David Llorens, principal at RSM, to break down the RSM 2026 Attack Vectors Report. Drawing from real-world offensive security engagements, David explains why identity contin...

2 Maalis 1h 11min

#404 - Sponsor Spotlight - Bravura Security

#404 - Sponsor Spotlight - Bravura Security

This episode is sponsored by Bravura Security. Learn more at bravurasecurity.com/idac.This is a Sponsor Spotlight episode of the Identity at the Center podcast. Jim McDonald and Jeff Steadman are join...

25 Helmi 55min

#403 - Strategic Identity Security with Simon Moffatt

#403 - Strategic Identity Security with Simon Moffatt

Simon Moffatt, founder and analyst at The Cyber Hut and co-host of The Analyst Brief podcast, returns to Identity at the Center for a wide-ranging conversation about the strategic evolution of identit...

23 Helmi 1h 4min

#402 - An Update on SSF and CAEP with Atul Tulshibagwale

#402 - An Update on SSF and CAEP with Atul Tulshibagwale

In this episode of Identity at the Center, hosts Jeff and Jim dive into the details of the Shared Signals Framework (SSF) and Continuous Access Evaluation Profile (CAEP), with special guest Atul Tulsh...

16 Helmi 1h 1min

#401 - Sponsor Spotlight - PlainID

#401 - Sponsor Spotlight - PlainID

This episode is sponsored by PlainID. Visit plainid.com/idac to learn more.In this sponsored episode, Jim McDonald and Jeff Steadman talk with Gal Helemski, CTO and co-founder of PlainID, about the ev...

11 Helmi 52min