W3C Workshop on Strong Authentication & Identity

and ; Location Microsoft Building 27, Redmond, WA

Call For Participation

What is the purpose of this workshop?

This workshop will look to provide an existing standards landscape, roadmap and potential future work for how strong identity and strong authentication should work on the web. A successful workshop will be how to align recent W3C specifications (WebAuthn, Verifiable Claims, Web Payments) and work that is ongoing in the W3C Credentials Community Group (DID, DIDAuth) along with IETF and ISO, as well as other existing community standards such as Open ID Connect, Oauth, SAML, etc.

How can I attend?

Attendance is free for all invited participants and is open to the public, whether or not W3C members.

If you wish to express interest in attending, please fill out the application form. We want to fill the room with people with practical experience with strong authentication and identity technologies.

Because the venue can accommodate unfortunately only 70 attendees, you must receive an acceptance email in order to attend. Also, be sure to keep an eye on these important dates. Application will be first come, first served with position statements helping the Program Committee guide the acceptance of participants.

As an alternative to the application form, you are encouraged to submit a presentation topic in the form of a position statement.

Our aim is to get a diversity of attendees from a variety of industries and communities, including:

  • Finance and payment industries
  • Government services
  • Online platforms and service providers

This workshop, as other W3C meetings, operates under its Code of Ethics and Professional Conduct.

Which topics will be covered?

Topics will include:

  • Strong Authentication: FIDO, WebAuthn, IFAA, DIDAuth, OpenID Connect, IEEE 2410
  • Strong Identity: ISO 29003, Entity Attestation Token (EAT)
  • Decentralized Identity (DID): Blockchain / Distributed Ledger Technologies, Verifiable Credentials
  • Federation: OpenID Connect, SAML, IndieAuth, DID
  • Credentials: Verifiable Credentials, JWT, JSON-LD, Entity Attestation Token (EAT)
  • Requirements: Ease of Use, Accessibility, Internationalization, Security, Privacy

Suggestions for further workshop topics? Submit a pull request on GitHub or email the program committee at group-identity-ws-pc@w3.org.

How can I suggest a presentation?

This is a workshop, not a conference, and any presentations will be short, with topics suggested by submissions and decided by the chairs and program committee. Our goal is to actively discuss topics, not to watch presentations.

In order to best facilitate informed discussion, we encourage attendees to read the accepted topics prior to attending the workshop.

If you wish to present on a topic, you should submit a position statement by the deadline (see important dates). Our program committee will review the input provided, and select the most relevant topics and perspectives.

Please send position statements (HTML, text, or PDF preferred) to group-identity-ws-pc@w3.org.

A good position statement should be a few paragraphs long and should include:

Note that your position statement submission is not intended to be an academic or conference paper, but is instead intended to educate the Program Committee on your interests and qualifications.


The workshop will be held at Microsoft Building 27 in Redmond, WA. The address is 3009 157th Pl NE, Redmond, WA 98052

Program Committee

Committee Members

What is W3C?

W3C is a voluntary standards consortium that convenes companies and communities to help structure productive discussions around existing and emerging technologies, and offers a Royalty-Free patent framework for Web Recommendations. W3C develops work based on the priorities of our members and our community.