Conveners
T&I Trial Mix: 3C
- Zacharias Törnblom (SUNET)
Description
To find out more about this session please listen to the short podcast.
At Sikt, the Norwegian NREN, we make high‑impact decisions under uncertainty, balancing diverse stakeholders, federated governance, legacy systems, and limited budgets. Hypothesis‑driven development offers a disciplined way to earn trust by turning assumptions into testable bets, learning from small, safe experiments, and making decisions about when to continue, pivot, or stop. This session...
SIRTFI defines how federated organisations should coordinate during security incidents, yet asserting compliance does not automatically build operational trust. In 2025, InCommon conducted a multi-day, story-driven cybersecurity cooperation exercise involving distributed Identity Providers and Service Providers. The exercise revealed gaps between IAM and security teams, inconsistent handling...
At the Munich University of Applied Sciences, MFA and passkeys were deployed in May 2025. After one year in production, we share results and lessons learned. We combine a controlled usability study with an ongoing longitudinal analysis to show why passkeys outperform OTPs and traditional FIDO2 security keys in usability, acceptance, and speed, and where they still struggle. Drawing on...
