Company Feeds | Identosphere Blogcatcher

The Financial Stability Board (FSB) — the G20’s global risk watchdog — released a sobering statement: there remain “significant gaps” in global crypto regulation.

It wasn’t the typical bureaucratic warning. It was a clear signal that the world’s financial governance structures are lagging behind the speed and fluidity of decentralized systems. For an industry built on cross-border code and borderless capital, national rulebooks no longer suffice.

But the FSB’s concern reaches beyond oversight. It exposes an unresolved paradox at the heart of digital finance: how to regulate what was designed to resist regulation.

Fragmented Governance, Unified Risk

The FSB’s assessment underscores a growing structural mismatch. The world’s regulatory responses to crypto have been disparate, reactive, and jurisdictionally fragmented.

The United States continues to rely on enforcement-driven oversight, led by the Securities and Exchange Commission (SEC) and Commodity Futures Trading Commission (CFTC), each defining “crypto assets” through its own lens. The European Union is pursuing harmonization through the Markets in Crypto-Assets Regulation (MiCA), creating the first comprehensive regional rulebook for digital assets. Asia remains diverse: Japan and Singapore operate under established licensing regimes, while India and China take more restrictive, state-centric approaches.

To the FSB, this regulatory pluralism is not innovation — it’s exposure. The lack of standardized frameworks for risk management, consumer protection, and cross-border enforcement creates vulnerabilities that can spill over into the traditional financial system.

In a market where blockchain transactions flow without borders, inconsistent regulation becomes the new systemic risk.

Regulatory Arbitrage: The Silent Threat

This fragmented environment fuels what the FSB calls “regulatory arbitrage” — the quiet migration of capital, operations, and data to jurisdictions with the weakest oversight.

Stablecoin issuers, decentralized finance (DeFi) platforms, and digital asset exchanges can relocate at the speed of software. For regulators, national boundaries have become lines on a digital map that capital simply ignores.

The result is a patchwork of supervision. Entities can appear compliant in one jurisdiction while operating opaque structures in another. Risk becomes mobile, and accountability becomes ambiguous.

Ironically, this dynamic mirrors the early years of global banking — before coordinated frameworks like Basel III sought to standardize capital rules. Crypto now faces the same evolution: a system outgrowing its regulatory perimeter.

Privacy as a Barrier and a Battleground

One of the FSB’s most striking observations concerns privacy laws. Regulations originally designed to protect individual data are now obstructing global financial oversight.

Cross-border supervision depends on data sharing — but privacy regimes like the EU’s General Data Protection Regulation (GDPR) and similar frameworks in Asia restrict what can be exchanged between authorities.

This creates a paradox:

To monitor crypto markets effectively, regulators need visibility. To protect users’ rights, privacy laws impose opacity.

The collision of these principles reveals a deeper tension between financial transparency and digital sovereignty.

For blockchain advocates, this friction isn’t a flaw — it’s the point. Privacy, pseudonymity, and autonomy were not accidental features of decentralized systems; they were foundational responses to surveillance-based finance.

Now, as regulators push for traceability “from wallet to wallet,” the original ethos of blockchain — self-sovereignty over data and identity — faces its greatest institutional test.

The Expanding Regulatory Perimeter

The FSB’s report marks a turning point: the global regulatory community no longer debates whether crypto needs rules, but how far those rules should reach.

Stablecoins have become the front line. The Bank of England (BoE) recently stated it will not lift planned caps on individual stablecoin holdings until it is confident such assets pose no systemic threat. Meanwhile, the U.S. Federal Reserve has warned that the growth of privately backed digital currencies could undermine monetary policy if left unchecked.

These positions signal that regulators see crypto not as a niche market, but as a parallel financial infrastructure that must be integrated or contained.

Yet, as oversight expands, so does the distance from decentralization’s original promise. The drive to institutionalize crypto — through licensing, capital controls, and compliance standards — risks turning decentralized finance into regulated middleware for the existing system.

The innovation remains, but the autonomy fades.

From Innovation to Integration

What the FSB implicitly acknowledges is that crypto’s mainstreaming is no longer hypothetical. Tokenized assets, on-chain settlement, and programmable money are being adopted by major banks and financial institutions.

However, this adoption often comes with a trade-off: decentralized architecture operated under centralized control.

The example of AMINA Bank — which recently conducted regulated staking of Polygon (POL) under the Swiss Financial Market Supervisory Authority (FINMA) — illustrates this trajectory. The blockchain may remain decentralized in code, but its operation is now filtered through institutional risk, compliance, and prudential oversight.

Crypto is entering a phase of institutional assimilation, where its tools survive but its principles are moderated.

The Ethical Undercurrent: Control vs. Autonomy

At its core, the FSB’s warning is not only about risk but about control. Global regulators see the same infrastructure that enables open, peer-to-peer exchange also enabling opaque, borderless financial activity that escapes accountability.

Their response — standardization and supervision — is rational from a stability standpoint. But it introduces a new ethical question: who governs digital value?

If every decentralized protocol must operate through regulated entities, if every wallet must be traceable, and if every transaction must comply with jurisdictional mandates, then blockchain’s promise of financial self-determination becomes conditional — granted by regulators, not coded by design.

This doesn’t make regulation wrong. It makes it philosophically consequential.

A Call for Coordination, Not Convergence

The FSB’s call for tighter global alignment does not mean a single, monolithic framework. True coordination will require mutual recognition, data interoperability, and respect for jurisdictional privacy laws, not their erosion.

Without this nuance, global harmonization risks turning into regulatory homogenization, where innovation bends entirely to institutional comfort.

A sustainable balance will depend on how regulators treat decentralization:

As a risk to be mitigated, or As an architecture to be understood and integrated responsibly.

The distinction is subtle but defining.

The Architecture of Financial Sovereignty

The G20’s warning marks a pivotal moment. It is a reminder that the future of digital finance will not be decided by code alone, but by the alignment — or collision — of regulatory philosophies.

Crypto began as a rejection of centralized financial power. It now faces regulation not as an external force, but as an inevitable layer of the system it helped create.

The question ahead is not whether crypto will be regulated. It already is.
The real question is whose definition of sovereignty will prevail — that of the individual, or that of the institution.

About Shyft Network

Shyft Network powers trust on the blockchain and economies of trust. It is a public protocol designed to drive data discoverability and compliance into blockchain while preserving privacy and sovereignty. SHFT is its native token and fuel of the network.

Shyft Network facilitates the transfer of verifiable data between centralized and decentralized ecosystems. It sets the highest crypto compliance standard and provides the only frictionless Crypto Travel Rule compliance solution while protecting user data.

Visitour website to read more, and follow us on X (Formerly Twitter), GitHub, LinkedIn,Telegram,Medium, andYouTube.Sign up for our newsletter to keep up-to-date on all things privacy and compliance.

Book your consultation: https://calendly.com/tomas-shyft or email: bd@shyft.network

G20’s Crypto Dilemma: Regulation Without Coordination was originally published in Shyft Network on Medium, where people are continuing the conversation by highlighting and responding to this story.

In recent years, the growing scale and profitability of so-called pig butchering scams has sparked increasing concern among law enforcement and regulatory agencies around the world. 

Explore Auth0's September 2025 product updates, featuring Auth0 for AI Agents, Tenant Access Control List in GA, Dry Run for Auth0 Deploy CLI, and more.

In the move toward more inclusive and privacy-respecting digital government services, guardianship (when one person is legally authorized to act on behalf of another) is a core, but often overlooked, component.

Today, guardianship processes are fragmented across probate court, family court, and agency-level determinations, with no clear mechanism for digital verifications. Without clarity, agencies risk legal challenges if they inadvertently allow the wrong person to act on behalf of a dependent.

Rather than treating guardianship as an abstract capability, we believe states should identify a non-exhaustive list of key use cases they want to enable. For example, a parent accessing school records on behalf of a minor, a guardian applying for healthcare or social services on behalf of a dependent senior adult, or a foster parent temporarily authorized to pick a child up. Each of these may require a different level of assurance, auditability, and inter-agency coordination.

Why Legal Infrastructure Falls Short

Several legal and regulatory barriers may affect the implementation of a state digital identity. At the state level, existing statutes were drafted for physical credentials and may not clearly authorize digital equivalents in all contexts. Without explicit recognition of state digital identity as a legally valid proof of identity, agencies may be constrained in adopting digital credentials for remote service delivery.

This legal ambiguity creates friction for both agencies and residents, limiting the full potential of digital identity solutions.

Mapping Authority: Who Can Issue What, and When

Guardianship in digital identity is a complex and, as yet, unsolved problem. A guardianship solution should accept decisions from the entities legally empowered to make them, represent those decisions in credentials rather than recreating them, and keep endorsements current as circumstances change.

The first step is to enumerate today’s pathways to establishing guardianship and to identify which entities are authorized to issue evidence. This mapping enables cohesive implementation and prevents confusion about who can issue what.

In parallel, a program should also clarify which agencies authorize which actions and what evidence each verifier needs. Where authorities differ, the state can allow agencies to issue guardianship credentials that reflect their scope while still unifying common steps to reduce friction.

A Taxonomy for Real-World Guardianship Scenarios

We believe that states should define a clear guardianship credential taxonomy.

There are multiple ways to define guardianship depending on legal and operational context, such as parental authority, foster care, medical consent, or financial guardianship. This will naturally lead to multiple guardianship credential types, tailored to definitions, use cases, and issuing agencies.

Design for Flexibility and Change

Digital delivery introduces several challenges that the program should address up front. Endorsements need to change cleanly at the age of majority or when a court modifies an order, including a clear transfer of control to the individual. Reissuance and backstops should be specified for lost devices or keys and calibrated to the chosen technical models. 

The design should remain flexible enough to accommodate emerging topics, including AI agent-based interactions, without locking in assumptions that are likely to shift.

Support Human Judgment and Prevent Abuse

The overall system for guardianship should maximize the ability for appropriate and contextualized exercise of human judgement by responsible individuals. All of these systems, even protected with cryptography, security measures, and fraud detection, will still be faulty. They should be designed to prioritize humans and their wellbeing, even with failures and fraud present.

A state digital identity framework should require that as much credential validity information as is appropriate and necessary to be made available to the relying party, and that clear indicators of the credential’s current status are available to holders.

It is equally important to prevent abuse of the system. A state must ensure that guardianship credentials cannot be issued or accumulated in ways that could enable fraud, such as one person holding dozens of guardian endorsements to unlawfully access benefits or facilitate trafficking.

The Future of Digital Guardianship

Guardianship in digital identity is not a future problem, it’s a present-day requirement. A successful state digital identity framework must support these relationships with clarity, flexibility, and privacy at its core.

SpruceID helps states design systems that reduce the risk of fraud without sacrificing individual autonomy. Contact us to learn more.

Contact Us

About SpruceID: SpruceID is building a future where users control their identity and data across all digital interactions.

U.S. civil servants had 53,070 passwords leaked publicly since the beginning of last year, FedScoop reports.

Thales Celebrates 60 Years in Mexico, driving technological innovation and local development prezly Thu, 10/16/2025 - 16:00 Mexico

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 16 Oct 2025 Thales, a global leader in advanced technologies, marks 60 years in Mexico, supporting the country’s technological development with solutions in Defence, Aerospace, Cybersecurity, and Digital. With more than 1,300 employees, the company has established a strong industrial footprint, spearheading key strategic projects for national growth. In this milestone year, Thales has proudly received the official “Hecho en México” label from the Mexican government, recognizing products and services that are designed and manufactured locally.

Mexico City, October 15, 2025 – Since 1965, Thales has been part of Mexico’s technological transformation. Today, with over 1,300 employees, it maintains a strong industrial presence that includes two production and personalization centers for payment cards and SIM/eSIM, an Air Traffic Management Service and Integration Center, and a Cyber Academy that trains professionals in cybersecurity. These operations serve not only the domestic market but also customers around the world, positioning Mexico as a strategic hub for the Group.

Over the past six decades, Thales has become an integral part of the daily lives of millions of Mexicans—from every phone call or mobile connection, every card or digital payment transaction, to the safety of their air travel and national defense. Thales’ radars and control centers manage 100% of Mexico’s airspace traffic. Additionally, the Mexican Navy’s Long-Range Oceanic Patrol Vessel (POLA) is equipped with Thales combat systems and sensors.

Thales is present wherever defence, security, and technological innovation are essential to advancing and safeguarding society. This journey has been made possible thanks to the trust of government entities, private companies, institutions, and cities that, for six decades, have chosen Thales as a strategic partner to face critical moments and explore new frontiers with confidence in an increasingly interconnected and complex world. In the face of every challenge, we reaffirm our commitment to building a future we can all trust.

This year, Thales proudly received the “Hecho en México” designation, awarded by the Ministry of Economy, recognizing not only the local origin of its production, but also its ongoing commitment to innovation, job creation, and specialized talent development in the country. This recognition underscores the company’s dedication to Mexico’s growth and global competitiveness.

"We look to the future with the same enthusiasm that marked the beginning of our journey 60 years ago, ready to remain a driver of change and progress in Mexico’s strategic sectors. And what better way to celebrate 60 years in the country than by honoring our people, strengthening national innovation, and reaffirming our commitment to this nation. At Thales, we proudly carry the 'Hecho en Mexico' label, because behind every project, client, and solution, there are Mexican engineers, researchers, and professionals making world-class technological advancements possible," said Analicia García, Country Director of Thales in Mexico.

Thales plays a key role in strengthening Mexico’s defence and security, with advanced systems that help safeguard its sovereignty and protect its citizens. It is also the leading provider of air traffic management systems in Mexico and a key player in the financial sector, where its cybersecurity and digital identity solutions protect the transactions and sensitive information of millions of citizens. In the field of defence and security, the Group contributes to strengthening national capabilities with advanced technologies that support the protection of territory, sovereignty, and the security of critical infrastructure. Its technology promotes trust in the national financial ecosystem and enhances the country’s resilience against emerging digital threats.

With pride in its legacy and eyes firmly on the future, Thales in Mexico will continue to expand its talent pool, investing in Mexican engineers whose high level of expertise and ability to excel on the international stage are undeniable. The company remains committed to promoting local talent, innovation, and research—solidifying its role as a strategic partner in building a safer, more competitive, and globally connected Mexico.

About Thales in Latin America

With six decades of presence in Latin America, Thales, a global tech leader for the Defence, Aerospace, Cyber & Digital sectors. The Group is investing in digital and “deep tech” innovations – Big Data, artificial intelligence, connectivity, cybersecurity and quantum technology – to build a future we can all trust.

The company has 2,500 employees in the region, across 7 countries - Argentina, Bolivia, Brazil, Chile, Colombia, Mexico and Panama - with ten offices, five manufacturing plants, and engineering and service centres in all the sectors in which it operates.

Through strategic partnerships and innovative projects, Thales in Latin America drives sustainable growth and strengthens its ties with governments, public and private institutions, as well as airports, airlines, banks, telecommunications and technology companies.

View PDF countries : Americas > Mexico https://thales-group.prezly.com/thales-celebrates-60-years-in-mexico-driving-technological-innovation-and-local-development thales-celebrates-60-years-mexico-driving-technological-innovation-and-local-development On Thales Celebrates 60 Years in Mexico, driving technological innovation and local development

The Payments Paradox:

The financial services landscape is defined by a relentless drive for frictionless commerce. Yet, the industry remains trapped in a payments paradox: increasing convenience often comes at the expense of security and reliability. The current generation of low-friction solutions, primarily QR codes, are highly susceptible to spoofing and fraud. Conversely, secure methods like NFC are costly, hardware-dependent, and struggle with mass deployment.

This trade-off is untenable.

LISNR has introduced the definitive answer: Radius. By utilizing ultrasonic data-over-sound, Radius provides the industry with the missing link—a secure, hardware-agnostic, and offline-reliable method for token exchange and proximity verification. This technology is not an iteration; it is the strategic shift required to future-proof mobile payments.

 

The Current Vulnerability and Reliability Gaps

For financial institutions and payment processors, the challenge lies in securing high-value transactions across a fractured ecosystem:

QR Code Spoofing: QR code payments are vulnerable to “quishing” (QR code phishing). A fraudster can easily overlay a malicious code onto a legitimate one, hijacking payments or stealing credentials. This simplicity is its greatest security flaw. Offline Transaction Liability: In environments with poor connectivity (e.g., transit, emerging markets), most digital wallets revert to a hybrid system where transactions are batched. This exposes merchants to greater fraud liability and introduces a dangerous delay in payment certainty. Deployment Bottlenecks: Scaling a payment solution for tap-to-pay payment solutions quickly requires high capital expenditure. The mandatory, dedicated hardware required for NFC makes global deployment slow and expensive, hindering financial inclusion. Radius: The Strategic Imperative for Payment Modernization

LISNR’s Radius SDK addresses these strategic deficiencies by decoupling transactional security from reliance on hardware and the network. It transforms every device with a speaker and microphone into a secure payment endpoint.

Here are the four non-negotiable benefits of adopting Radius for your payments platform:

1. Absolute Security 

LISNR eliminates the core vulnerability of open-source payment modalities by building security directly into the data transfer protocol.

Spoofing Elimination: ToneLock® uses a proprietary security precaution to obfuscate the payload before transmission. Only receivers with the correct, authorized key can demodulate the tone, making it impossible for unauthorized apps to read or spoof the payment data. End-to-End Encryption: For the highest security standards, the SDK offers optional, built-in AES 256 Encryption for all payloads, ensuring data remains unreadable. 2. Unrivaled Offline Transaction Certainty

Radius is engineered for mission-critical reliability, ensuring transactions are secure and auditable even when the network fails.

Network Agnostic Reliability: The entire ToneLock and AES 256 Encryption/Decryption process can occur offline. This enables the secure exchange and validation of payment tokens without requiring an active internet connection. Radius ensures instant transaction certainty and lowers merchant liability in disconnected environments. Bi-Directional Exchange: The SDK supports bidirectional transactions, allowing two devices (e.g., customer wallet and merchant terminal) to simultaneously transmit and receive tones on separate channels. This two-way handshake initiates payment instantly while simultaneously delivering a merchant record to the consumer device. 3. High-Velocity, Zero-Friction Commerce

The speed of a transaction directly correlates with consumer satisfaction and throughput in high-volume settings. Radius accelerates the process with specialized tone profiles.

Rapid High-Throughput: For point-of-sale environments, LISNR offers Point 1000 and Point 2000 tone profiles. These are optimized for sub-1 meter range and engineered for high throughput, enabling near-instantaneous credential exchange for rapid checkout and self-service kiosks. Seamless User Experience: The process can be nearly entirely automated: the user simply opens the app, and the transaction is initiated and verified by proximity, eliminating manual input, scanning, or tapping. 4. Low-Cost, Universal Deployment

Radius is a software-only solution that democratizes access to secure, contactless payment infrastructure.

Hardware-Agnostic: The SDK is integrated into existing applications and requires only a device’s standard speaker and microphone. This removes the need for costly upgrades to POS hardware, dramatically reducing the capital expenditure barrier for global payment modernization. Scalability: As a software solution, upgrading the entire payment infrastructure is as easy as updating the app. Because there is no new hardware to manage, payment providers can achieve unparalleled scale and speed in deploying secure payment functionality across millions of endpoints instantly.

LISNR is the worldwide leader in proximity verification because our software-first approach delivers the security and reliability the payments industry demands, without sacrificing the frictionless experience consumers expect.

Want to Learn more?

We’d love to learn more about your payment solution and discuss how data-over-sound can help improve your consumer experience. Learn more about our solutions in finance on our website or contact us to set up a meeting. 

 

 

The post 4 Ways Ultrasonic Proximity Solves the Security-Friction Trade-Off appeared first on LISNR.

De tijd dat je stapels documenten nodig had om een klant goed te beoordelen, loopt op z’n einde. In een wereld waarin snelheid, compliance en klanttevredenheid steeds belangrijker worden, is werken met pdf’s, bijlagen en handmatige controles niet meer houdbaar. Zeker in de credit management sector leidt het oude proces tot vertraging, fouten en frustratie – voor zowel de klant als de organisatie.

The Future of Web3 Communities

Everyone in Web3 talks about community. It is the word every project uses. The badge everyone wears. But what does it actually mean?

Too often, “community” becomes a checkbox. A Telegram channel. A Discord server with NFT giveaways. Some quick incentives to drive engagement. It looks alive, but it is often built on borrowed attention. When the rewards stop, so does the activity.

That is not a community. That is marketing.

Real community building is slower. It is harder. It is the process of aligning people who build with people who use what is built. It is finding the point where incentives and intention meet. Because incentives bring people in, but intention keeps them there.

Ontology has been working at this intersection for years. Its ecosystem, Ontology Network, ONT ID, ONTO Wallet, and Orange Protocol, is designed to make digital identity, reputation, and ownership usable. The mission is not to promise a new world. It is to build the tools that make that world functional.

The challenge, and the opportunity, lies in connection. How do we connect the builders who create new infrastructure with the users who actually need it? How do we make sure that what gets built is not only possible, but wanted?

The Two Paths to Community

There are two basic ways to grow a Web3 community.

The first is bottom-up. Builders and users start together, often from an open-source idea or shared need. Growth is organic. The intent is pure. It can lead to real innovation, but it often lacks structure. Without incentives or direction, momentum slows. Projects fade before reaching scale.

The second is top-down. A project defines the mission, creates incentives, and drives participation. This works in the short term. It brings clear goals and resources. But it risks becoming transactional. When participation is driven only by reward, genuine buy-in disappears.

Ontology’s view is that neither path works alone. Bottom-up builds belief. Top-down brings clarity. The right approach mixes both. You need intent to guide action, and incentives to accelerate it.

Incentives Are Not the Enemy

Incentives get a bad reputation in Web3, mostly because they are often misused. Too much focus on token rewards can distort priorities. But incentives are not the problem. Misalignment is.

Used correctly, incentives can do what they are meant to do: attract attention, reward effort, and encourage collaboration. They should not replace purpose. They should amplify it.

A healthy Web3 community does not reward speculation. It rewards contribution. The best projects find ways to recognize value that is created, not just traded. That is where Ontology’s focus on verifiable identity and reputation becomes powerful.

Through tools like ONT ID and Orange Protocol, participants can prove who they are and what they have done. This makes contribution measurable. It lets communities recognize real participation, not just noise. Builders can see who their users are. Users can trust who they are working with.

That is how you turn incentives from a gimmick into a growth engine.

What People Need vs. What People Want

Every product in Web3 faces a simple question: do people need it, or do they want it?

The truth is that need alone is not enough. People need security, privacy, and control of their data, but they rarely act on those needs until they want the solution. Want drives action.

At the same time, want without need leads to hype. Short-term excitement, no lasting value.

The strongest projects meet both. They make people want what they need. That is the balance Ontology’s tools aim to strike. Identity and reputation are not new ideas, but in Web3 they become essential. Users are learning that decentralized identity is not just a feature. It is freedom. It is usability.

When developers build with that in mind, they create products that solve real problems. ONTO Wallet gives users control of their assets and identity in one place. Orange Protocol turns reputation into a building block for trust. ONT ID lets applications integrate secure, verifiable identity without friction.

These are not abstract innovations. They are the foundation for the next generation of apps, games, and communities.

The Bridge Between Builders and Users

Community building in Web3 is not just about size. It is about structure. Builders and users need to meet in the middle.

That is where Ontology wants to focus: creating spaces and systems where developers and users can collaborate directly. Builders should understand what users need before they design. Users should influence what gets built. The result is not just adoption, but alignment.

How that happens can vary. Incubators can bring early projects into focus. Incentives can reward experimentation. Retrospective funding can support what already works. The structure is flexible. The principle is constant. Connect intent with incentive.

Ontology’s ecosystem gives that structure a home. It already supports tools for identity, data, and trust. The next step is bringing those who build with those who use. Because Web3 only scales when both sides grow together.

From Incentives to Intent

The early years of Web3 were about speculation. The next phase is about utility. The projects that last will be the ones that shift from short-term incentives to long-term intent.

That means building for real people, not just wallets. It means communities where participation has meaning, and contribution has visibility. It means giving users a reason to stay even when rewards change.

Ontology’s technology is ready for that shift. But technology alone is not enough. It needs people. Builders who see the value of decentralized identity and reputation. Users who want control and trust. Contributors who believe in open collaboration.

The future of Web3 will not be built by one group or the other. It will be built by both, together.

The Next Step

If the goal of Web3 is freedom, then community is the mechanism that gets us there. Not through marketing or speculation, but through shared purpose.

Ontology is ready to help build that future. To connect the developers who create with the users who validate. To make collaboration not just possible, but natural.

It starts by asking the right question: what do people need, and what do they want? Then building where those answers overlap.

Let us bring you together. Builders, meet your users. Users, meet your builders. The next phase of Web3 begins with both.

Building What Matters was originally published in OntologyNetwork on Medium, where people are continuing the conversation by highlighting and responding to this story.

Nineteen Virtual Asset firms in Dubai have been charged with penalties amounting to $163,000. These firms were fined for operating without a Virtual Assets Regulatory Authority (VARA) license and breaching Dubai's marketing rules.

The post 19 Virtual Asset Providers Fined up to $163,000 by Dubai Regulators first appeared on ComplyCube.

You know that moment when a new app asks for your ID and selfie before letting you in? You sigh, snap the photo, and in seconds it says “You’re verified!” It feels simple, but behind that small step sits an advanced system called ID verification services that keeps businesses safe and fraudsters out.

In today’s digital world, identity verification isn’t a luxury. It’s a necessity. Without it, online platforms would be a playground for scammers. That’s why more companies are turning to digital ID verification to secure their platforms while keeping user experiences smooth and fast.

 

How ID Verification Evolved into a Digital Superpower

Not too long ago, verifying someone’s identity meant visiting a bank, filling out forms, and waiting days for approval. It was slow and painful. Today, online identity verification has turned that ordeal into a 10-second selfie check.

Feature Traditional ID Checks Digital ID Verification Time Days or weeks Seconds or minutes Accuracy Prone to human error AI-powered precision Accessibility In-person only Anywhere, anytime Security Paper-based Encrypted and biometric

According to a Juniper Research 2024 report, businesses using digital identity checks have reduced onboarding times by 55% and cut fraud by nearly 40%. That’s not an upgrade, that’s a revolution.

 

How ID Verification Services Actually Work

It looks easy on your screen, but behind the scenes, it’s like a full orchestra performing perfectly in sync. When you upload your ID, OCR technology instantly extracts your details. Then, facial recognition compares your selfie to the photo on your document, while an ID verification check cross-references the data with secure global databases.

All this happens faster than your coffee order at Starbucks. And yes, it’s fully encrypted from start to finish.

If you want to see how global accuracy standards are tested, visit the NIST Face Recognition Vendor Test (FRVT). This benchmark helps developers measure the precision of their facial recognition algorithms.

 

Why Businesses Are Making the Shift

Let’s be honest, no one likes waiting days to get verified. Businesses know that, and users expect speed. So, they’re shifting from manual checks to identity verification solutions that deliver results in real time.

ID verification software gives businesses an edge by:

Cutting down on manual reviews

Reducing fraud risks through AI analysis

Staying compliant with rules like GDPR

Enhancing global accessibility

A McKinsey & Company study found that businesses using automated ID verification checks experienced up to 70% fewer fraudulent sign-ups. Another Gartner analysis (2023) reported that automation in verification reduces onboarding costs by over 50%.

So, businesses aren’t just going digital for fun; they’re doing it to stay alive in a market where users expect instant trust.

 

The Technology Making It All Possible

Every smooth verification hides some serious tech genius. Artificial intelligence detects tampered IDs or fake lighting, while machine learning improves detection accuracy over time. Facial recognition compares live selfies to document photos, even if your hair color or background lighting changes.

The FRVT 1:1 results show that today’s best facial recognition models are over 20 times more accurate than they were a decade ago, according to NIST.

Optical Character Recognition (OCR) handles the text on IDs, and encryption ensures data privacy. It’s these small but powerful innovations that make modern ID document verification fast, secure, and scalable.

Want to explore real-world tech examples? Visit the Recognito Vision GitHub, where you can see how advanced verification systems are built from the ground up.

 

Why It’s a Smart Investment

Investing in reliable ID verification solutions isn’t just about compliance, it’s about building customer trust. When users feel safe, they’re more likely to finish sign-ups and come back.

According to Statista’s 2024 Digital Trust Report, companies using digital identity verification saw conversion rates increase by 30–35%. That’s because users today value both speed and security.

So, when you invest in this technology, you’re not just protecting your business. You’re giving users the confidence to engage without hesitation.

Where ID Verification Shines

The beauty of user ID verification is that it works across every industry. It’s not just for banks or fintech startups.

In finance, it prevents money laundering and fraud.

In healthcare, it confirms patient identities for telemedicine.

In eCommerce, it helps fight fake orders and stolen cards.

In gaming, it enforces age restrictions.

In ridesharing and rentals, it keeps both parties safe.

According to a 2022 IBM Security Study, 82% of users say they trust companies more when those companies use digital identity checks. That’s how powerful this technology is; it builds credibility while keeping everyone safe.

 

Recognito Vision’s Role in Modern Verification

For businesses ready to step into the future, Recognito Vision makes it simple. Their ID document recognition SDK helps developers integrate verification directly into apps, while the ID document verification playground lets anyone test the process firsthand.

Recognito’s platform blends AI accuracy, fast processing, and user-friendly design. The result? Businesses verify customers securely while users hardly notice it’s happening. That’s efficiency at its best.

 

Challenges to Consider

Of course, nothing’s perfect. Some users hesitate to share IDs online, and global documents come in thousands of formats. Integrating verification tools into older systems can also feel tricky.

However, choosing a trustworthy ID verification provider can solve most of these issues. As Gartner’s 2024 Cybersecurity Trends Report points out, companies that adopt verified digital identity frameworks see significantly fewer data breaches than those using manual checks.

So while there are challenges, the benefits easily outweigh them.

 

The Road Ahead

The next phase of digital identity verification is all about control and privacy. Imagine verifying yourself without even sharing your ID. That’s what decentralized identity systems and zero-knowledge proofs are bringing to life.

According to the PwC Global Economic Crime Report 2024, widespread digital ID verification could save over $1 trillion in fraud losses by 2030. That’s not science fiction, it’s happening right now.

The world is heading toward frictionless, instant trust. And businesses that adopt early will lead the pack.

 

Final Thoughts

At its core, ID verification services aren’t just about checking who someone is. They’re about creating confidence for users, for businesses, and for the digital world as a whole.

If you’re a company ready to modernize and protect your platform, explore Recognito Vision’s identity verification solutions. Because in an era of deepfakes, scams, and cyber tricks, the smartest move is simply knowing who you’re dealing with safely, quickly, and confidently.

 

Frequently Asked Questions

 

1. What are ID verification services and how do they work?

ID verification services confirm a person’s identity by analyzing official ID documents and matching them with facial or biometric data using AI technology.

 

2. Why are ID verification services important for businesses?

They help businesses prevent fraud, comply with KYC regulations, and build customer trust through secure and fast verification processes.

 

3. Is digital ID verification secure for users?

Yes, digital ID verification is highly secure because it uses encryption, biometric checks, and data protection standards to keep user information safe.

 

4. How do ID verification services help reduce fraud?

They detect fake or stolen IDs, verify real users instantly, and prevent unauthorized access, reducing fraud risk significantly.

 

5. What should businesses look for in an ID verification provider?

Businesses should look for providers that offer fast results, global document support, strong data security, and full regulatory compliance.

October is National Domestic Violence Awareness Month (DVAM), an annual event dedicated to shedding light on the devastating impact of domestic violence and advocating for those affected. 

The theme for DVAM 2025 is With Survivors, Always, which is exploring what it means to be in partnership with survivors towards safety, support, and solidarity.

Anonyome Labs stands #WithSurvivors this National Domestic Violence Awareness Month and every day—and is proud to help empower safety through privacy for survivors of domestic violence via our Sudo Safe Initiative.

What is the Sudo Safe Initiative?

The Sudo Safe Initiative is a program developed to bring privacy to those at higher risk of verbal harassment or physical violence.

Sudo Safe offers introductory discounts on the MySudo privacy app, to help people to keep their personally identifiable information private.

You can get a special introductory discount to try MySudoby becoming a Sudo Safe Advocate.

Here’s how it works:

Visit our website at anonyome.com. Sign up to be a Sudo Safe Advocate — it’s quick and easy. Once you’re signed up, you’ll receive details on how to access your exclusive discount and start using MySudo.

In addition to survivors of domestic violence, the Sudo Safe Initiative also empowers safety through privacy for:

Healthcare professionals Teachers Foster care workers Volunteers Survivors of violence, bullying, or stalking.

How can MySudo help survivors of domestic violence?

MySudo allows people to communicate with others without using their own phone number and email address, to reduce the risk of that information being used for tracking or stalking.

With MySudo, a user creates secure digital profiles called Sudos. Each Sudo has a unique phone number, handle, and email address for communicating privately and securely.

The user can avoid making calls and sending texts and emails from their personal phone line and email inbox by using the secure alternative contact details in their Sudos.

No personal information is required to create an account with MySudo through the app stores. 

Download MySudo

Four other ways to help survivors of domestic violence Educate yourself and others

Learn and share the different types of abuse (physical, emotional, sexual, financial, and technology-facilitated) and how to find local resources and support services. 

Listen without judgment

One of the most powerful things you can offer a domestic violence survivor is support, by doing things like:

Creating a safe space for them to share their experiences without fear of judgment or blame Letting them express their feelings while validating their emotions Being willing to listen  Helping them create a safety plan.

Encourage professional support

Encourage your friend or family experiencing domestic violence to seek help from counselors, therapists, or support groups that specialize in trauma and abuse. You can assist by researching local resources, offering to accompany them to appointments, or helping them find online support communities. Professional guidance can provide victims with the tools they need to rebuild their lives.

Raise awareness and advocate for change

Support survivors not just during DVAM, but year-round. Find ideas here and learn about the National Domestic Violence Awareness Project.

Become a Sudo Safe Advocate

If your organization can help us spread the word about how MySudo allows at-risk people to interact with others without giving away their phone number, email address, and other personal details, we invite you to become a Sudo Safe Advocate.

As an advocate, you’ll receive:

A toolkit of shareable privacy resources A guide to safer communication Special MySudo promotions Your own digital badge.

Become a Sudo Safe Advocate today.

More information

Contact the National Domestic Violence Hotline.

Learn about the National Domestic Violence Awareness Project.

Learn more about Sudo Safe Initiative and Anonyome Labs.

Anonyome Labs is also a proud partner of the Coalition Against Stalkerware.

The post DVAM 2025: MySudo discount for survivors of domestic violence appeared first on Anonyome Labs.

Many company social-media accounts don't follow security policies or best practices, creating opportunities for attackers and risks for the organizations. Here's how to get the accounts under control.

For years, the promise of a truly passwordless enterprise has felt just out of reach. We’ve had passwordless for web apps, but the desktop remained a stubborn holdout. We’ve seen the consumer world embrace passkeys, but the solutions were built for convenience, not the rigorous security and compliance demands of the enterprise. This created a dangerous gap, a world where employees could access a sensitive cloud application with a phishing-resistant passkey, only to log in to their workstation with a phishable password.

That gap closes today.

HYPR is proud to announce our partnership with Microsoft to deliver the industry's first true enterprise-grade passkey solution. By integrating HYPR’s non-syncable, FIDO2 passkeys directly with Microsoft Entra ID, we are finally eliminating the last password and providing a unified, phishing-resistant authentication experience from the desktop to the cloud.

What is the Difference Between Enterprise and Other Passkeys?

The term "passkey" has become a buzzword, but not all passkeys are created equal. The synced, consumer-grade passkeys offered by large tech providers are a fantastic step forward for the public, but they present significant challenges for the enterprise:

Loss of Control: Synced passkeys are stored in third-party consumer cloud accounts, outside of enterprise control and visibility. Security Gaps: They are designed to be shared and synced by users, which can break the chain of trust required for corporate assets. The Workstation Problem: They do not natively support passwordless login for enterprise workstations (Windows/macOS), leaving the most critical entry point vulnerable.

For the enterprise, you need more than convenience. You need control, visibility, and end-to-end security. You need an enterprise passkey.

Introducing HYPR Enterprise Passkeys for Microsoft Entra ID

HYPR’s partnership with Microsoft directly addresses the enterprise passkey gap. Our solution is purpose-built for the demands of large-scale, complex IT environments that rely on Microsoft for their identity infrastructure.

This isn't a retrofitted consumer product. It's a FIDO2-based, non-syncable passkey that is stored on the user's device, not in a third-party cloud. This ensures that your organization retains full ownership and control over the credential lifecycle.

With a single, fast registration, your employees can use one phishing-resistant credential to unlock everything they need:

Passwordless Desktop Login: Users log in to their Entra ID-joined Windows workstations using the HYPR Enterprise Passkey on their phone. No password, no phishing, no push-bombing.
Seamless SSO and App Access: That same secure login event grants them a Primary Refresh Token (PRT), seamlessly signing them into all their Entra ID-protected applications without needing to authenticate again. Why Is This a Game-Changer for Microsoft Environments?

This partnership isn't just about adding another MFA option; it's about fundamentally upgrading the security posture of your entire Microsoft ecosystem.

Effortless Deployment: Go Passwordless in Days, Not Quarters

You’ve invested heavily in the Microsoft ecosystem. Now, you can finally maximize that investment by eliminating the #1 cause of breaches: the password. The HYPR and Microsoft partnership makes true, end-to-end passwordless authentication a reality.

There are no complex federation requirements, no painful certificate management, and no AD dependencies. It's a simple, lightweight deployment that allows you to roll out phishing-resistant MFA across your entire workforce in days, not quarters.

Empower your employees with fast, frictionless access that works everywhere they do. And empower your security team with the control and assurance that only a true enterprise passkey can provide.

Ready to bring enterprise-grade passkeys to your Microsoft environment? Schedule your personalized demo today.

Enterprise Passkey FAQ

Q: What is a "non-syncable" passkey?

A:  A non-syncable passkey is a FIDO2 credential that is bound to the user's physical device and cannot be copied, shared, or backed up to a third-party cloud. This provides a higher level of security and assurance because the enterprise maintains control over where the credential resides.

Q: How is this different from using an authenticator app for MFA?

A: Authenticator apps that use OTPs or push notifications are still susceptible to phishing and push-bombing attacks. HYPR Enterprise Passkeys are based on the FIDO2 standard, which is cryptographically resistant to phishing, man-in-the-middle, and other credential theft attacks

Q: What does the deployment process look like?

A: Deployment is designed to be fast and lightweight. It involves deploying the HYPR client to workstations and configuring the integration within your Microsoft Entra ID tenant. Because there are no federation servers or complex certificate requirements, many organizations can go from proof-of-concept to production rollout in a matter of days.

Q: Does this support Bring-Your-Own-Device (BYOD) scenarios?

A: Yes. The solution is vendor-agnostic and supports both corporate-managed and employee-owned (BYOD) devices, providing a simple, IT-approved self-service recovery flow that keeps users productive without compromising security.

CivicLens : Building the First Structured Dataset of EU Parliamentary Speeches

A new Annotators Hub challenge

The European Parliament generates thousands of speeches, covering everything from local affairs to international diplomacy. These speeches shape policies that impact millions across Europe and beyond. Yet, much of this discourse remains unstructured, hard to track, and difficult to analyze at scale.

CivicLens, the second and latest task in the Annotators Hub, invites contributors to help change that. Together with Lunor, Ocean is building a structured, research-grade dataset based on real EU plenary speeches. Your annotations will support civic tech, media explainers, and political AI, and will give you the chance to earn a share of the $10,000 USDC prize pool.

What you’ll do

You’ll read short excerpts from speeches and answer a small set of targeted questions:

Vote Intent: Does the speaker explicitly state how they will vote (yes/no/abstain/unclear)? Tone: Is the rhetoric cooperative, neutral, or confrontational? Scope of Focus: Is the emphasis on the EU, the speaker’s country, or both? Verifiable Claims: Does the excerpt contain a factual, checkable claim (flag and highlight the span)? Topics (multi-label): e.g., economy, fairness/rights, security/defense, environment/energy, governance/procedure, health/education, technology/industry. Ideological Signal (if any): Is there an inferable stance or framing (e.g., pro-integration, national interest first, market-oriented, social welfare-oriented), or no clear signal?

Each task follows a consistent schema with clear tooltips and examples. Quality is ensured through overlap assignments, consensus checks, and spot audits.

Requirements Good command of written English (reading comprehension and vocabulary) Ability to recognize when political or ideological arguments are being made Basic understanding of common political dimensions (e.g., left vs. right, authoritarian vs. libertarian) Minimum knowledge of international organizations and relations (e.g., what the EU is, roles of member states) Awareness of what parliamentary speeches are and their general purpose in the context of EU roll call votes Why it matters

Your contributions will help researchers and civic organizations better understand political debates, predict voting behavior, and make parliamentary discussions more transparent and accessible.

The resulting dataset isn’t just for political analysis, but it has broad, real-world applications:

Fact-checking automation: AI models trained on this data can learn to distinguish checkable assertions from opinions or vague claims, helping organizations like PolitiFact, Snopes, or Full Fact prioritize their verification workload Compliance and policy tracking: Financial compliance platforms, watchdog groups, and regtech firms can detect and monitor predictive or market-moving statements in political and economic discourse Content understanding and education: News aggregators, summarization tools, and AI assistants (like Feedly or Artifact) can better tag and summarize political content. The same methods can also power educational apps that teach critical thinking and media literacy Rewards

A total prize pool of $10,000 USDC is available for contributors.

Rewards are distributed linearly based on validated submissions, using the formula:

Your Reward = (Your Score ÷ Sum of All Scores) × Total Prize Pool

The higher the quality and volume of your accepted annotations, the higher your share.

For full participation details, submission rules, and instructions, visit the quest details page on Lunor Quest.

CivicLens : Building the First Structured Dataset of EU Parliamentary Speeches was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

Organizations leveraging legacy Windows communication protocols Link-Local Multicast Name Resolution and NetBIOS Name Service could have their credentials pilfered without the exploitation of software flaws, according to Infosecurity Magazine.

Lawyers, labour consultants, accountants: 5 practical ways in which a Business VPN can protect your work and data

 

Are you a lawyer working away? A smartworking accountant? Do you provide consulting services at clients’ premises? If so, read this article to learn why you should use a Business VPN to connect to a network other than your own. A VPN for business is a valuable professional ally because it helps protect highly sensitive information while guaranteeing secure remote access to professional content wherever you are, even abroad.

 

So, what exactly can a VPN – a virtual private network – do for you when you work remotely? Here are five practical ways in which using a VPN for remote work can make a difference to professionals and small businesses.

Work from home security

You are working from home and, as always, you have to access business management systems, dashboards, customer and supplier databases. You may also need to consult or send confidential documents like balance sheets, contracts and court procedures. You even have crucial calls and meetings on your agenda to finalise agreements or submit reports. To do all this, you rely on your home router and perhaps use your own laptop or smartphone. Without a VPN to protect your connection, your home network can become a point of vulnerability – a potential entry point for eavesdropping and data breaches. Have you ever thought what would happen if all the information you work with were to fall into the wrong hands? Your clients’ confidentiality, the security of your work and your own professional reputation would be severely compromised.

 

A VPN creates an encrypted and therefore secure tunnel between your device and company servers, ensuring cybersecurity and protecting resources and internal communications. In this way, even remotely sharing files with co-workers or customers is absolutely secure. Many premium VPNs also offer additional security tools that protect you from malware, intrusive advertisements, dangerous sites and trackers, and warn you in case of data leaks.

 

Public Wi-Fi security

On a business trip, you are highly likely to use hotel or airport lounge Wi-Fi to complete a presentation or access your corporate cloud. What could happen without a VPN? Imagine you are waiting for your flight and want to check your email. The moment you connect to the public network and access your mail server, a hacker intercepts your traffic, reads your email and steals your login credentials. You don’t know it, but you have just suffered what is called a man-in-the-middle attack. With a virtual private network, no hacker can see what you do online, even on open Wi-Fi networks.

Accessing national services and portals, even abroad

If you are abroad and need to access essential international websites, portals and services like National Insurance, Inland Revenue, or corporate intranets, you may encounter access limitations and geo-blocking. This is because, for security reasons, some public portals and corporate networks choose to restrict access from foreign IPs. In some cases, the site may not function properly or may not show certain sections.

 

In these cases, a VPN is absolutely indispensable. Irrespective of where you are physically located, all you need to do is connect to a server in another country to simulate a presence there, bypass geo-blocking and gain access the content you want, while still enjoying an encrypted and protected connection.

Privacy and data security

This aspect is often overlooked. Surfing online without adequate protection endangers the security not only of your own information but also that of your employees, collaborators, suppliers and customers, risking potentially enormous economic and reputational damage.

 

If you think data breaches only concern big tech companies like Meta, Amazon and Google, you are wrong. Very often hackers and cybercriminals choose to target professional firms or small businesses that fail to pay attention to IT security, underestimating the need for proper tools and protective infrastructures to prevent data breaches.

 

When dealing with sensitive data, health, legal or financial information on a daily basis, keeping it secure is not just common sense in today’s fully digitalised world, but a legal duty.

 

Data privacy is as crucial for individuals as it is for companies, because it represents a key element of protection, trust and accountability. It means maintaining control over your personal information and protecting yourself against abuse or misuse that may damage brand reputation or personal security.

 

Using a VPN for business travel is one of the tools that cybersecurity experts recommend to protect privacy and client data, since, as we have seen, VPNs change your IP address and encrypt your Internet connection, preventing potential intrusions.

Access to international websites and content

If you work with international customers or suppliers, a virtual private network is indispensable. As we have seen, for security reasons, some institutional and professional sites and portals restrict access based on your geographical location. With a VPN, you can simulate your presence in a country other than the one in which you are physically located.

For instance, do you ever need to consult public registers or legal databases in non-EU countries, access tax or customs portals, use SaaS software for foreign markets or monitor the pricing strategies of foreign competitors by accessing local versions of their sites? With a VPN you only need to connect to the server of the country or geographical area you are interested in to bypass geo-blocking and access the financial resources you need.

 

Whatever your profession, whatever the size of your company, and wherever you are, a VPN is indispensable to the security and privacy of your work.

The post VPN for lawyers, labour consultants, accountants appeared first on Tinexta Infocert international website.

What is a VPN? A non-technical guide for professionals

We have been living in a vast digital workplace for some time now, a permanently connected environment that transcends the boundaries of the traditional office to include the sofa at home, airport lounges, hotel rooms, coffee shops and train carriages. In this fluid and constantly evolving digital space, you read the news, shop online, download apps, participate in calls and meetings, answer emails, access sensitive data, perform banking transactions, and more besides, on a daily basis. But do you ever wonder what happens to your data while you are online? Are you really in control of the information you share, the sites you visit, and the actions you take? Spoiler: a large number of others can see what you do during your daily visits to the Internet. Unless, of course, you use a VPN – a Virtual Private Network to protect your Internet connection and online privacy. So, how does a VPN work? A VPN acts as a vigilant and attentive guardian to protect you from prying eyes and malicious attacks.

Who can see what you do online?

Though it might seem so, surfing online is by no means private. Every click you make leaves a trace. These traces form what is called a “digital shadow” or fingerprint. Every time you “touch” something online, many actors monitor, collect or intercept what you do. Who are these people?

 

1. Your Internet Service Provider (ISP): your provider can track all the sites you visit, when you visit them, and for how long. Not only that, but your provider may store and share certain information with third parties (not only the police and judicial authorities, but even advertisers) for a variable period of time, depending on the type of content, the consent you have given, internal policies and legislation (national and European). In Italy, for example, Internet service providers may retain certain data for up to 10 years.

 

2. Network administrators: if you connect to corporate or public Wi-Fi, e.g. a hotel network, the network administrator can monitor its traffic and thus have access to information on your online activities.

 

3. Websites and online platforms: many sites collect browsing data, including through cookies (just think of all those pop-ups that constantly interrupt your browsing), pixels and trackers. This allows them to profile you in order to show you personalised advertisements or sell your data to third parties.

 

4. Search engines: if you use a traditional search engine like Google, Bing or Yahoo, everything you do is traceable – even if you use “Incognito mode”. If you want to keep your searches private, we suggest using non-traceable search engines such as DuckDuckGo, Qwant, Startpage or Swisscows.

 

5. Hackers and criminals: surfing online exposes you to daily risks, especially when you choose to connect to unprotected public Wi-Fi networks or surf without the use of security tools like antivirus software, VPNs or anti-malware tools. Credentials, emails, bank details, even your identity, are valuable commodities.

The Internet is not a private house; it is a public square.

Every time you connect to the Internet, your device uses an Internet Protocol (IP) address, which can reveal not only your online identity, but also the location from which you connect. Technically, an IP address is a numerical label assigned by the Internet service provider. Because it is used to identify individual devices among billions of others, it can be regarded as a postal address in the digital world.

 

When you enter the name of a website (example.com) in your browser’s address bar, your computer has to perform certain operations because it cannot actually read words, only numbers. First of all, the browser locates the IP address corresponding to the site you want (example.com = 192.168.1.1), then, once the location is found, it loads the site onto the screen. An IP address functions like a home address, ensuring that data sent over the Internet always reaches the correct destination.

 

This identifier is visible to all the subjects listed above.

 

Not only that, but the information you routinely exchange online – passwords, emails, documents and sensitive data – often travel in “plaintext” i.e. without being encrypted. This means that anyone who manages to intercept them on their way through the network can read or copy them. Think of sending a postcard: anyone intercepting it on the way can read its contents, your name, the recipient’s address and so on. The same happens with your online data. Not using adequate protection systems, like a VPN, is like leaving your front door open. Would you ever do that?

How does a VPN work?

Typically, when you attempt to access a website, your Internet provider receives the request and directs it straight to the desired destination. A VPN, however, directs your Internet traffic through a remote server before sending it on to its destination, creating an encrypted tunnel between your device and the Internet. This tunnel not only secures the data you send and receive, but also hides it from outside eyes, providing you with greater privacy and online security. A VPN also changes your real IP address (i.e. your digital location), e.g. Milan, and replaces it with that of the remote server you have chosen to connect to, e.g. Tokyo. In this way, no one – neither your Internet provider, nor the sites you visit, nor any malicious attackers – can know where you are really connecting from.

 

It is as if the virtual public square, where everyone sees and listens, turns into a closed room, invisible to those outside, at the click of a button.

 

This, in brief, is how a virtual private network works:

 

1. First, the VPN server identifies you by authenticating your client.

2. The VPN server applies an encryption protocol to all the data you send and receive, making it unreadable to anyone trying to intercept it.

3. The VPN creates a virtual, secure “tunnel” through which your data travels to its destination, so that no one can access it without authorisation.

4. The VPN wraps each data packet inside an external packet (an “envelope”) which is encrypted by encapsulation. The envelope is the essential element of the VPN tunnel that keeps your data safe during transfer.

5. When the data reaches the server, the external packet is removed through a decryption process.

Using a VPN should be part of your digital hygiene

Every professional should use a VPN, not only when working remotely or using public Wi-Fi, but as an essential tool to surf more securely, privately and responsibly, day after day. You can think of a VPN as a habit of digital hygiene that provides greater privacy and an additional layer of protection against potential online threats.

A VPN:

 

● encrypts your data, protecting you from prying eyes
● changes your real IP, protecting your identity
● routes your data through remote servers, creating a secure and private tunnel
● stops your Internet provider and other third parties tracking your data.

 

To sum up, a VPN is not just a tool for special situations, like using public Wi-Fi, accessing restricted content. Neither is it only for experienced users and cybersecurity enthusiasts. On the contrary, it is an essential tool – a “must-have” – for all professionals and individuals who want to inhabit the digital space that surrounds us with greater awareness and less fear.

The post VPN: a non-technical guide for professionals appeared first on Tinexta Infocert international website.

In this blog post, we’ll explore the differences between ReBAC and ABAC with an in-depth comparison of OpenFGA and Cedar

Read the first installment in our series on The Future of Digital Identity in America here.

Technology alone doesn’t change societies; policy does. Every leap forward in digital infrastructure (whether electrification, the internet, or mobile payments) has been accelerated or slowed by policy. The same is true for verifiable digital identity. The question today isn’t whether the technology works; it does. The question is whether policy frameworks will make it accessible, trusted, and interoperable across industries and borders.

Momentum is building quickly. State legislatures, federal agencies, and international bodies are beginning to treat verifiable digital identity not as a niche experiment, but as critical public infrastructure. In this post, we’ll explore how policy is shaping digital identity, from U.S. state laws to European regulations, and why governments care now more than ever.

States Leading the Way: Laboratories of Democracy

In the U.S., states have become the proving ground for verifiable digital identity. Seventeen states, including California, New York, and Georgia, already issue mobile driver’s licenses (mDLs) that are accepted at more than 250 TSA checkpoints. By 2026, that number is expected to double, with projections of 143 million mDL holders by 2030, according to ABI Research forecasts.

Seventeen states now issue mobile driver’s licenses accepted at more than 250 TSA checkpoints - digital ID is already real, growing faster than many expected.

California’s DMV Wallet offers one of the most comprehensive examples. In less than two years, over two million Californians have provisioned mobile driver’s licenses, which can be used at TSA checkpoints, in convenience stores for age-restricted purchases, and even online to access government services—real, everyday transactions that people recognize. In addition to the digital licenses, more than thirty million vehicle titles have been digitized using blockchain, making it easier for people to transfer ownership, register cars, or prove title history without mountains of paperwork. Businesses can verify credentials directly, residents can present them online or in person, and the system is designed to work across states and industries. In other words, this program demonstrates proof that digital identity can scale to millions of people and millions of records while solving real problems.

California’s DMV Wallet has issued over two million mDLs and has digitized over 42 million vehicle titles using blockchain - demonstrating trustworthiness at scale.

Utah took a different approach by legislating principles before widespread deployment. SB 260, passed in 2025, lays down a bill of rights for digital identity. Citizens cannot be forced to unlock their phones to present a digital ID. Verifiers cannot track or build profiles from ID use. Selective disclosure must be supported, allowing people to prove an attribute, like being over 21, without revealing unnecessary details. Digital IDs remain optional, and physical IDs must continue to be accepted. Utah’s framework shows how policy can proactively protect civil liberties while enabling innovation.

Utah’s SB 260 doesn’t just pilot identity tech - it builds in privacy and choice from day one, naming those values as rights.

Together, California and Utah illustrate a spectrum of policymaking. One demonstrates what’s possible with rapid deployment at scale - how quickly millions of people can adopt new credentials when the technology is made practical and widely available. The other shows how legislation can proactively embed privacy and choice into the foundations of digital identity, creating durable protections that guard against misuse as adoption grows. Both approaches are valuable: California proves the model can work in practice, while Utah ensures it works on terms that respect civil liberties. Taken together, they show that speed and safeguards are not opposing forces, but complementary strategies that, if aligned, can accelerate trust and adoption nationwide.

Federal Engagement: Trust, Security, and Compliance

Federal agencies are also stepping in, linking digital identity to national security and resilience. The Department of Homeland Security (DHS) is piloting verifiable digital credentials for immigration—a use case where both accuracy and accessibility are essential.

Meanwhile, the National Institute of Standards and Technology (NIST), through its National Cybersecurity Center of Excellence (NCCoE), has launched a hands-on mDL initiative. In collaboration with banks, state agencies, and technology vendors (including 1Password, Capital One, Microsoft, and SpruceID, among others), the project is building a reference architecture demonstrating how mobile driver’s licenses and verifiable credentials can be applied in real-world use cases: CIP/KYC onboarding, federated credential service providers, and healthcare/e-prescribing workflows. The NCCoE has already published draft CIP/KYC use-case criteria, wireframe flows, and a sample bank mDL information page to show how a financial institution might integrate and present mDLs to customers—bringing theory into usable models for regulation and deployment. 

Why the urgency? Centralized identity systems are prime targets for adversaries. Breach one large database, and millions of people’s information is compromised. Decentralized approaches change that risk equation by sharding and encrypting user data, reducing the value of any single “crown jewel” target.

Decentralized identity reshapes the risk equation—no single crown jewel database for adversaries to breach.

Policy is also catching up to compliance challenges in financial services. In July 2025, Congress passed the Guiding and Establishing National Innovation for U.S. Stablecoins (GENIUS) Act, which, among other provisions, directs the U.S. Treasury to treat stablecoin issuers as financial institutions under the Bank Secrecy Act (BSA). Section 9 of the Act requires Treasury to solicit public comment on innovative methods to detect illicit finance in digital assets, including APIs, artificial intelligence, blockchain monitoring, and (critically) digital identity verification.

Treasury’s August 2025 Request for Comment (RFC) builds directly on this mandate. It seeks input on how portable, privacy-preserving digital identity credentials can support AML/CFT and sanctions compliance, reduce fraud, and lower compliance costs for financial institutions. Importantly, the RFC recognizes privacy as a design factor, asking specifically about risks from over-collection of personal data, the sensitivity of information reviewed, and how to implement safeguards alongside compliance.

This is a significant shift: digital identity is not only being framed as a user-rights issue or a convenience feature, but also as a national security and financial stability priority. By embedding identity into the GENIUS Act’s framework for stablecoins and BSA modernization, policymakers are effectively saying that modernized, cryptographically anchored identity is essential for the resilience of U.S. markets.

The European Example: eIDAS 2.0

While the U.S. pursues a patchwork of state pilots and federal engagement, Europe has opted for a coordinated regulatory approach. In May 2024, eIDAS 2.0 came into force, requiring every EU Member State to issue a European Digital Identity Wallet by 2026.

The regulation mandates acceptance across public services and major private sectors like banks, telecoms, and large online platforms. Privacy is baked into the requirements: wallets must be voluntary and free for citizens, support selective disclosure, and avoid central databases. Offline QR options are also mandated, ensuring usability even without connectivity.

Europe is treating digital identity as a right: free, voluntary, private, and accepted across borders.

Why does this matter? For citizens, it means one-click onboarding across borders. For businesses, it means lower compliance costs and reduced fraud. For the EU, it’s a step toward digital sovereignty, reducing dependency on foreign platforms and asserting leadership in global standards.

Identity as Infrastructure

Look closely, and a pattern emerges: policymakers are treating identity as infrastructure. Like roads, grids, or communications networks, identity is a shared resource that underpins everything else. Without it, markets stumble, governments waste resources, and citizens lose trust. With it, economies run smoother, fraud drops, and individuals gain autonomy.

Identity is infrastructure—like roads or grids, it underpins every modern economy and democracy.

This framing (identity as infrastructure) helps explain why governments care now. Fraud losses are staggering, trust in institutions is fragile, and AI is amplifying risks at unprecedented speed. Policy is not just reacting to technology; it’s shaping the conditions for decentralized identity to succeed.

Risks of Policy Done Wrong

Of course, not all policy is good policy. Poorly designed frameworks could centralize power, entrench surveillance, or create vendor lock-in. Imagine if a single state-issued wallet were mandatory for all services, or if verifiers were allowed to log every credential presentation. The result would be digital identity as a tool of control, not freedom.

That’s why principles matter. Utah’s SB 260 is instructive: user consent, no tracking, no profiling, open standards, and continued availability of physical IDs. These are not just policy features; they are guardrails to keep digital identity aligned with democratic values.

Privacy as Policy: Guardrails Before Growth

Alongside momentum in statehouses and federal pilots, civil liberties organizations have raised a critical warning: digital identity cannot scale without strong privacy guardrails. Groups like the ACLU, EFF, and EPIC have cautioned that mobile driver’s licenses (mDLs) and other digital ID systems risk entrenching surveillance if designed poorly.

The ACLU’s Digital ID State Legislative Recommendations outline twelve essential protections: from banning “phone-home” tracking and requiring selective disclosure, to preserving the right to paper credentials and ensuring a private right of action for violations. EFF warns that without these safeguards, digital IDs could “normalize ID checks” and make identity presentation more frequent in American life .

The message is clear: technology alone isn’t enough. Policy must enshrine privacy-preserving features as requirements, not optional features. Utah’s SB 260 points in this direction by mandating selective disclosure and prohibiting tracking. But the broader U.S. landscape will need consistent frameworks if decentralized identity is to earn public trust.

We'll explore these principles in greater depth in a later post in this series, where we examine how civil liberties critiques shape the design of decentralized identity and why policy and technology must work together to prevent surveillance creep.

SpruceID’s Perspective

At SpruceID, we sit at the intersection of policy and technology. We’ve helped launch California’s DMV Wallet, partnered on Utah’s statewide verifiable digital credentialing framework, and collaborated with DHS on verifiable digital immigration credentials. We also contribute to global standards bodies, such as the W3C and the OpenID Foundation, ensuring interoperability across jurisdictions.

Our perspective is simple: decentralized identity must remain interoperable, privacy-preserving, and aligned with democratic principles. Policy can either accelerate this vision or derail it. The frameworks being shaped today will determine whether decentralized identity becomes a tool for empowerment or for surveillance.

Why Governments Care Now

The urgency comes down to four forces converging at once:

Fraud costs are exploding. In 2024, Americans reported record losses - $16.6 billion to internet crime (FBI IC3) and $12.5 billion to consumer fraud (FTC). On the institutional side, the average U.S. data breach cost hit $10.22 million in 2025, the highest ever recorded (IBM). AI is raising the stakes. Synthetic identity fraud alone accounted for $35 billion in losses in 2023 (Federal Reserve). FinCEN has warned that criminals are now using generative AI to create deepfake videos, synthetic documents, and realistic audio to bypass identity checks and exploit financial systems at scale. Global trade requires interoperability. Cross-border commerce depends on reliable, shared frameworks for verifying identity. Without them, compliance costs balloon and innovation slows. Citizens expect both privacy and convenience. People want frictionless, consumer-grade experiences from digital services, but they will not tolerate surveillance or being forced into a single system.

Policymakers increasingly see decentralized identity as a way to respond to all four at once. By reducing fraud, strengthening democratic resilience, supporting global trade, and protecting privacy, decentralized identity offers governments both defensive and offensive advantages.

The Policy Frontier

We are standing at the frontier of decentralized identity. States are pioneering real deployments. Federal agencies are tying identity to national security and compliance. The EU is mandating wallets as infrastructure. Around the world, policymakers are realizing that identity is not just a product, it’s the scaffolding for digital trust.

The decisions made in statehouses, federal agencies, and international bodies over the next few years will shape how identity works for decades. Done right, verifiable digital identity can become the invisible infrastructure of freedom, convenience, and security. Done wrong, it risks becoming another layer of surveillance and control.

That’s why SpruceID is working to align policy with technology, ensuring that verifiable digital identity is built on open standards, privacy-first principles, and user control. Governments care now because the stakes have never been higher. And the time to act is now.

This article is part of SpruceID’s series on the future of digital identity in America.

Subscribe to be notified when we publish the next installment.

More data releases are expected, as the industry appears unwilling to negotiate with Scattered Lapsus$ Hunters.

Identity evolves from security control to business enabler, driving automation and agility.

The US Department of Justice (DOJ) today announced the seizure of bitcoin worth $15 billion from Prince Group's operation of forced-labor scam compounds across Cambodia.

Elliptic’s analysis shows that these bitcoins were “stolen” in 2020 from LuBian, a bitcoin mining business with operations in China and Iran.

 

New sanctions target the Prince Group Transnational Criminal Organization, for its involvement in online scams such as pig butchering.

Elliptic has identified crypto wallets associated with the newly-sanctioned entities, which have received transactions worth billions of dollars.

Prince Group chairman Chen Zhi was also indicted in a U.S. court today, and has had $15 billion in Bitcoin seized. These bitcoins were previously "stolen" from a Chinese bitcoin mining business.

 

UK lifts ban on crypto ETNs for retail investors as government makes digital asset innovation push

The UK’s Financial Conduct Authority (FCA) has formally lifted a ban on the offering of cryptoasset exchange traded notes (cETNs) to retail investors - an important indication that the UK is responding to changing market dynamics in an effort to boost innovation and growth. 

Predictoor DF159 rewards available. DF160 runs October 16th — October 23rd, 2025 1. Overview

Data Farming (DF) is an incentives program initiated by Ocean Protocol. In DF, you can earn OCEAN rewards by making predictions via Predictoor.

Data Farming Round 159 (DF159) has completed.

DF160 is live, October 16th. It concludes on October 23rd. For this DF round, Predictoor DF has 3,750 OCEAN rewards and 20,000 ROSE rewards.

2. DF structure

The reward structure for DF160 is comprised solely of Predictoor DF rewards.

Predictoor DF: Actively predict crypto prices by submitting a price prediction and staking OCEAN to slash competitors and earn.

3. How to Earn Rewards, and Claim Them

Predictoor DF: To earn: submit accurate predictions via Predictoor Bots and stake OCEAN to slash incorrect Predictoors. To claim OCEAN rewards: run the Predictoor $OCEAN payout script, linked from Predictoor DF user guide in Ocean docs. To claim ROSE rewards: see instructions in Predictoor DF user guide in Ocean docs.

4. Specific Parameters for DF160

Budget. Predictoor DF: 3.75K OCEAN + 20K ROSE

Networks. Predictoor DF applies to activity on Oasis Sapphire. Here is more information about Ocean deployments to networks.

Predictoor DF rewards are calculated as follows:

First, DF Buyer agent purchases Predictoor feeds using OCEAN throughout the week to evenly distribute these rewards. Then, ROSE is distributed at the end of the week to active Predictoors that have been claiming their rewards.

Expect further evolution in DF: adding new streams and budget adjustments among streams.

Updates are always announced at the beginning of a round, if not sooner.

About Ocean and DF Predictoor

Ocean Protocol was founded to level the playing field for AI and data. Ocean tools enable people to privately & securely publish, exchange, and consume data. Follow Ocean on Twitter or TG, and chat in Discord.

In Predictoor, people run AI-powered prediction bots or trading bots on crypto price feeds to earn $. Follow Predictoor on Twitter.

DF159 Completes and DF160 Launches was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

“I had one of those chance airplane conversations recently—the kind that sticks in your mind longer than the flight itself.”

My seatmate was reading a book about artificial intelligence, and at one point, they described the idea of an “infinitely growing AI.” I couldn’t help but giggle a bit. Not at them, but at the premise.

An AI cannot be infinite. Computers are not infinite. We don’t live in a world where matter and energy are limitless. There aren’t enough chips, fabs, minerals, power plants, or trained engineers to sustain an infinite anything.

This isn’t just a nitpicky detail about science fiction. It gets at something I’ve written about before:

In Who Really Pays When AI Agents Run Wild? I noted that scaling AI systems isn’t just about clever protocols or smarter algorithms. Every prompt, every model run, every inference carries a cost in water, energy, and hardware cycles. In The End of the Global Internet, I argued that we are already moving toward a fractured network where national and regional policies shape what’s possible online.

The “infinite AI” conversation is an example that ties both threads together. We may dream about global systems that grow without end, but the reality is that technology is built on finite supply chains. It’s those supply chains that are turning out to be the real bottleneck for the future of the Internet.

A Digital Identity Digest Why Tech Supply Chains, Not Protocols, Set the Limits on AI and the Internet Play Episode Pause Episode Mute/Unmute Episode Rewind 10 Seconds 1x Fast Forward 30 seconds 00:00 / 00:15:19 Subscribe Share Amazon Apple Podcasts CastBox Listen Notes Overcast Pandora Player.fm PocketCasts Podbean RSS Spotify TuneIn YouTube iHeartRadio RSS Feed Share Link Embed

You can Subscribe and Listen to the Podcast on Apple Podcasts, or wherever you listen to Podcasts.

And be sure to leave me a Rating and Review!

The real limits aren’t protocols

When people in the identity and Internet standards space talk about limits, we often point to protocols. Can the protocol scale? Will a new protocol successfully replace cookies? Can we use existing protocols to manage delegation across ecosystems?

These are important questions, but they are not the limiting factor. Protocols, after all, are words in documents and lines of code. They can be revised, extended, and reinvented. The hard limits come from the physical world.

Chips and fabs. Advanced semiconductors require fabrication plants that cost tens of billions of dollars and take years to build. Extreme ultraviolet lithography machines (say that five times, fast) are produced (as of 2023) by exactly one company in the Netherlands—ASML—and delivery schedules are measured in years. Minerals and materials. Every computer depends on a handful of rare inputs: lithium for batteries, cobalt for electrodes, rare earth elements for magnets, neon for chipmaking lasers, high-purity quartz for wafers. These are not evenly distributed across the globe. China dominates rare earth refining, while Ukraine has been a critical source of neon. And there is no substitute for water in semiconductor production. Power and cooling. Training a frontier AI model consumes gigawatt-hours of electricity. Running hyperscale data centers requires water for cooling that rivals the consumption of entire towns. When power grids are strained, there’s no protocol that can fix it. People. None of this runs itself. Chip designers, process engineers, cleanroom technicians, miners, metallurgists—these are highly specialized roles. Many countries are facing demographic changes that include aging workforces and immigration restrictions for the current tech giants and uneven education where the populations are booming.

You can’t standardize your way out of these shortages. You can only manage, redistribute, or adapt to them.

Geopolitics and demographics

The Internet was often described as “borderless,” but the hardware that makes it run is anything but. Supply chains for semiconductors, network equipment, and the minerals that feed them are deeply entangled with geopolitics and demographics.

No region has a fully independent pipeline:

The US leads in chip design but depends on the Indo-Pacific region for chip manufacturing. China dominates rare earth refining but relies on imports of high-end chipmaking tools it cannot yet build domestically. Europe has niche strengths in lithography and specialty equipment but lacks the scale for end-to-end independence. Countries like Japan, India, and Australia supply critical inputs—from silicon wafers to rare earth ores—but not the whole stack.

This interdependence is not an accident. Globalization optimized supply chains for efficiency, not resilience. Each region specialized in the step where it had a comparative advantage, creating a finely tuned but fragile web.

Demographics add another layer. Many of the most skilled engineers in chip design and manufacturing are reaching retirement age. The same is true for technical standards architects; they are an aging group. Training replacements takes years, not months. Immigration restrictions in key economies further shrink the talent pool. Even if we had the minerals and the fabs, we might not have the people to keep the pipelines running.

The illusion of global resilience

For decades, efficiency reigned supreme. Tech companies embraced just-in-time supply chains. Manufacturers outsourced to the cheapest reliable suppliers. Investors punished redundancy as waste.

That efficiency gave us cheap smartphones, affordable cloud services, and rapid AI innovation. But it also created a brittle system. When one link in the chain breaks, the effects cascade:

A tsunami in Japan or a drought in Taiwan can disrupt global chip supply. A geopolitical dispute can halt exports of critical minerals overnight. A labor strike at a port can ripple through shipping networks for months.

We saw this during the 2020–2023 global chip shortage. A pandemic-driven demand spike collided with supply chain shocks: a fire at a Japanese chip plant, drought in Taiwan, and war in Ukraine cutting off neon supplies. Automakers idled plants. Consumer electronics prices rose. Lead times stretched into years.

AI at scale only magnifies the problem. Training one large model requires thousands of specialized GPUs. If one upstream material is constrained—say, the gallium used in semiconductors—it doesn’t matter how advanced your algorithms are. The model doesn’t get trained.

Cross-border dependencies never vanish

This is where the conversation loops back to the idea of a “global Internet.” Even if the Internet fragments into national or regional spheres—the “splinternet” scenario—supply chains remain irreducibly cross-border.

You can build your own national identity system. You can wall off your data flows. But you cannot build advanced technology entirely within your own borders without enormous tradeoffs.

A U.S. data center may run on American-designed chips, but those chips likely contain rare earths refined in China. A Chinese smartphone may use domestically assembled components, but the photolithography machine that patterned its chips came from Europe. An EU-based AI startup may host its models on European servers, but the GPUs were packaged and tested in Southeast Asia.

Fragmentation at the protocol and governance level doesn’t erase these dependencies. It only adds new layers of complexity as governments try to manage who trades with whom, under what terms, and with what safeguards.

The myth of “digital sovereignty” often ignores the material foundations of technology. Sovereignty over protocols does not equal sovereignty over minerals, fabs, or skilled labor.

Opportunities in regional diversity

If infinite AI is impossible and total independence is unrealistic, what’s left? One answer is regional diversity.

Instead of assuming we can build one perfectly resilient global supply chain, we can design multiple overlapping regional ones. Each may not be fully independent, but together they reduce the risk of “one failure breaks all.”

Examples already in motion:

United States. The CHIPS and Science Act is pouring billions into domestic semiconductor manufacturing (though how long that act will be in place is in question). The U.S. is also investing in rare earth mining and processing though environmental and permitting challenges remain. European Union. The EU Raw Materials Alliance is working to secure critical mineral supply and recycling. European firms already lead in certain high-end equipment niches. Japan and South Korea. Both countries are investing in duplicating supply chain segments currently dominated by China, such as battery materials. India. This country has ambitious plans to build local chip fabs and become a global assembly hub. Australia and Canada. Positioned as suppliers of critical minerals, Australia and Canada are working to move beyond extraction to refining.

Regional chains come with tradeoffs: higher costs, slower rollout, and sometimes redundant investments. But they create buffers. If one region falters, others can pick up slack.

They also open the door to more design diversity. Different regions may approach problems in distinct ways, leading to innovation not just in technology but in governance, regulation, and labor practices.

Reframing the narrative

So let’s come back to that airplane conversation. The myth of infinite AI (or infinite cloud computing, for that matter) isn’t just bad science fiction. It’s a misunderstanding of how technology actually grows.

AI, like the Internet itself, is bounded by the real world. Protocols matter, but they are only the top layer. Beneath them are the chips, the minerals, the power, and the people. Those are the constraints that will shape the next decade.

Which leads us to the current irony in all of this: even as the Internet fragments along political and regulatory lines, the supply chains that support it remain irreducibly global. We can argue about governance models and sovereignty all we like and target tariffs at a whim, but a smartphone or a GPU is still a planetary collaboration.

The challenge, then, isn’t to pretend we can achieve total independence. It’s to design supply chains—local, regional, and global—that acknowledge these limits and build resilience into them.

Looking ahead

When I wrote about The End of the Global Internet, I wanted to show that fragmentation is not just possible, but already happening. But fragmentation doesn’t erase interdependence. It just makes it messier.

When I wrote about Who Pays When AI Agents Run Wild? I wanted to point out that scaling computation is not a free lunch. It comes with bills measured in electricity, water, and silicon.

This post ties both threads together: the real bottlenecks in technology are not the protocols we argue about in standards meetings. They are the supply chains that determine whether the chips, power, minerals, and people exist in the first place.

AI is a vivid example because its appetite is so enormous. But the lesson applies more broadly. The Internet is fracturing into spheres of influence, but those spheres will remain bound by the physical pipelines that crisscross borders.

So the next time someone suggests an infinite AI, or a fully sovereign domestic Internet, remember: computers aren’t infinite. Supply chains aren’t sovereign. The real question isn’t whether we can break free of those facts, it’s how we design systems that can thrive within them.

If you’d rather track the blog than the podcast, I have an option for you! Subscribe to get a notification when new blog posts go live. No spam, just announcements of new posts. [Subscribe here] 

Transcript

[00:00:29] Welcome back to The Digital Identity Digest. I’m Heather Flanagan, and today, we’re going to dig into one of those invisible but very real limits on our digital future — supply chains.

[00:00:42] Now, I know supply chains don’t sound nearly as exciting as AI agents or new Internet protocols. But stay with me — because without the physical stuff (chips, minerals, power, and people), all of those clever protocols and powerful algorithms don’t amount to much.

[00:01:00] This episode builds on two earlier posts:

Who Really Pays for AI? — exploring how AI comes with a bill in water, electricity, and silicon. The End of the Global Internet — examining how fragmentation is reshaping the network itself.

Both lead us here: the supply chain is one of the biggest constraints on how far both AI and the Internet can actually go.

[00:01:27] So, if you really want to understand the future of technology, you can’t just look at the code or the protocols.

[00:01:35] You have to look at the supply chains.

The Reality Check: Technology Needs Stuff

[00:01:38] Let’s start with a story. On a recent flight, my seatmate was reading a book about artificial intelligence. Go him.

[00:01:49] At one point, he leaned over and described an idea of an infinitely growing AI.

[00:01:56] I couldn’t help but laugh a little — because computers are not infinite.

[00:02:04] There just aren’t enough chips, fabs, minerals, power plants, or trained people on the planet to sustain infinite anything. It’s not imagination — it’s physics, chemistry, and labor.

[00:02:20] That exchange captured something I keep seeing in conversations about AI, identity, and the Internet. We treat protocols as if they’re the bottleneck. But ultimately, it’s the supply chains underneath that constrain everything.

Chips, Fabs, and the Fragility of Progress

[00:02:38] Let’s break that down — starting with chips and fabricators, also known as fabs.

[00:02:44] The most advanced semiconductors come from fabrication plants that cost tens of billions of dollars to build — and take years, even a decade, to come online.

[00:02:56] And the entire process hinges on one company — ASML in the Netherlands.

[00:03:03] They’re the only supplier of extreme ultraviolet lithography machines. Without those, you simply can’t make the latest generation of chips. The backlog? Measured in years.

[00:03:21] Then there’s the issue of minerals and materials:

Lithium for batteries Cobalt for electrodes Rare earth elements for magnets Neon for chipmaking lasers High-purity quartz for wafers

[00:03:44] These resources aren’t evenly distributed. China refines most rare earths. Ukraine supplies much of the world’s neon. And water — another critical input — is also unevenly available.

Power, People, and Production

[00:04:05] A frontier AI model doesn’t just use a lot of electricity — it uses gigawatt-hours of power.

[00:04:26] Running a hyperscale data center can consume as much water as a small city. And when power grids are strained, no clever standard can conjure new electrons out of thin air.

[00:04:26] Then there’s the people. None of this runs itself:

Chip designers Process engineers Clean room technicians Miners and metallurgists

[00:04:57] These are highly specialized roles — and many experts are nearing retirement. Replacing them takes years, not months. Immigration limits compound the challenge.

[00:05:05] So yes, protocols matter — but the real limits come from the physical world.

Geopolitics and the Global Supply Web

[00:05:16] The Internet may feel borderless, but the hardware that makes it work is not.

[00:05:26] Every link in the supply chain is tangled in geopolitics:

The U.S. leads in chip design but depends on Taiwan and South Korea for manufacturing. China dominates rare earth refining but still relies on imported chipmaking tools. Europe has niche strengths in lithography but lacks materials for full independence. Japan, India, and Australia provide key raw inputs but not the entire production stack.

[00:06:16] This global interdependence made systems efficient — but also fragile.

Demographics: The Aging Workforce

[00:06:21] There’s also a demographic angle. Skilled engineers and technicians are aging out.

[00:06:35] In about 15 years, we’ll see significant skill gaps. Even if minerals and fabs are available, we might not have the people to keep things running.

[00:06:58] The story isn’t just about where resources are — it’s about who can use them.

The Illusion of Resilience

[00:07:06] For decades, efficiency ruled. Tech companies built “just-in-time” supply chains, outsourcing to low-cost, reliable suppliers.

[00:07:21] That gave us cheap smartphones and rapid innovation — but also brittle systems.

[00:07:38] A few reminders of fragility:

2011: Tsunami in Japan disrupts semiconductor production. 2021: Drought in Taiwan forces fabs to truck in water. 2022: War in Ukraine cuts off neon supplies. 2020–2023: Global chip shortage reveals how fragile everything truly is.

[00:08:18] AI at scale only magnifies this fragility. Even one constrained resource, like gallium, can halt model training — regardless of how advanced the algorithms are.

The Splinternet Still Needs a Global Supply Chain

[00:08:48] Even as the Internet fragments into regional “Splinternets,” supply chains remain global.

[00:09:18] You can wall off your data, but you can’t build advanced tech entirely within one nation’s borders.

Examples include:

A U.S. data center using chips refined with Chinese minerals. A Chinese smartphone using European lithography tools. An EU startup running on GPUs packaged in Southeast Asia.

[00:09:46] Fragmentation adds complexity, not independence.

The Myth of Digital Sovereignty

[00:09:46] The idea of total “digital sovereignty” sounds empowering — but it’s misleading.

[00:10:07] You can control protocols, standards, and regulations.
But you can’t control:

Minerals you don’t have Fabricators you can’t build Workforces you can’t train Designing Resilient Regional Systems

[00:10:14] So, what’s the alternative? Regional diversity.

Instead of one global, fragile chain, we can build multiple overlapping regional systems:

U.S.: The CHIPS and Science Act investing in domestic semiconductor manufacturing. EU: The Raw Materials Alliance strengthening mineral supply and recycling. Japan & South Korea: Building redundancy in battery and material supply. India: Launching its “Semiconductor Mission.” Australia & Canada: Expanding refining capacity for critical minerals.

[00:11:38] Yes, these efforts are costlier and slower — but they build buffers. If one region falters, another can pick up the slack.

The Takeaway: Infinite AI is a Myth

[00:12:06] That airplane conversation sums it up. The myth of infinite AI isn’t just science fiction — it’s a misunderstanding of how technology works.

[00:12:17] AI, like the Internet, is bounded by the real world — by chips, minerals, power, and people.

[00:12:45] Even as the Internet fragments, its supply chains remain irreducibly global.

[00:13:02] The challenge isn’t escaping these limits — it’s designing systems that thrive within them.

Closing Thoughts

[00:13:27] The real bottleneck in technology isn’t protocols — it’s supply chains.

[00:13:48] AI is just the most visible example of how finite our digital ambitions are.

[00:14:13] So, the next time you hear someone talk about “infinite AI” or a “sovereign Internet,” remember:

Computers are not infinite. Supply chains cannot be sovereign.

[00:14:19] The real question isn’t how to escape those facts — it’s how to build systems that can thrive within them.

Outro

[00:14:19] Thanks for listening to The Digital Identity Digest.

If you enjoyed the episode:

Share it with a colleague or friend. Connect with me on LinkedIn @hlflanagan. Subscribe and leave a rating wherever you listen to podcasts.

[00:15:02] You can also find the full written post at sphericalcowconsulting.com.

Stay curious, stay engaged — and let’s keep the conversation going.

The post Why Tech Supply Chains, Not Protocols, Set the Limits on AI and the Internet appeared first on Spherical Cow Consulting.

You’ve probably seen that pop-up asking you to verify your identity when signing up for a new banking app or wallet. That’s KYC, short for Know Your Customer. It helps businesses confirm that users are real, not digital impostors trying to pull a fast one.

In the old days, this meant long queues, forms, and signatures. Today, KYC verification online makes that process digital, instant, and painless.

Here’s how the two compare.

Feature Traditional KYC Online KYC Verification Time Taken Days or weeks A few minutes Method Manual paperwork Automated verification Accuracy Prone to error AI-based precision Accessibility Branch visits required Anywhere, anytime Security Paper-based Encrypted and biometric

According to Deloitte’s “Revolutionising Due Diligence for the Digital Age”, digital verification and automation can drastically improve compliance efficiency and customer experience, both of which are central to modern financial services.

That’s why KYC verification online has become the backbone of secure onboarding for fintechs, banks, and even government platforms.

 

How KYC Verification Online Actually Works

When you perform a KYC check online, it feels quick and effortless, but behind that simple process, powerful AI is doing the hard work. It matches your selfie with your ID, reads your details using OCR, and cross-checks everything with trusted databases, all in seconds.

Here’s what’s really happening:

You upload your ID (passport, driver’s license, or national ID).

You take a quick selfie using your phone camera.

The system compares your selfie to the photo on your ID using advanced facial recognition.

OCR (Optical Character Recognition) extracts the text from your ID to verify your name, address, and date of birth.

Data is validated against government or regulatory databases.

You get approved often in under two minutes.

That’s KYC authentication in action: fast, secure, and contact-free.

According to the NIST Face Recognition Vendor Test (FRVT), today’s leading algorithms are over 20 times more accurate than those used just a decade ago. That leap in precision is one reason why eKYC verification is now trusted by global banks and fintech companies.

Why Businesses Are Switching to KYC Verification Online

No one enjoys filling out endless forms or waiting days for approvals. That’s why businesses everywhere are turning to KYC verify online systems; they make onboarding smoother for customers while cutting costs for organizations.

Some of the biggest reasons behind this shift include:

Faster onboarding times that enhance customer experience.

Greater accuracy from AI-powered checks.

Enhanced fraud detection through biometric validation.

Regulatory compliance with frameworks like GDPR.

Global accessibility for users to verify KYC online anytime, anywhere.

Research by Deloitte Insights notes that organizations automating due diligence and verification processes reduce manual costs while increasing compliance accuracy, a huge win for financial institutions managing high user volumes.

Simply put, online KYC check systems help companies onboard customers faster while minimizing human error and fraud.

Technology Behind Modern KYC Verification Solutions

Every smooth verification process is powered by some serious tech muscle.

Artificial Intelligence (AI) helps detect fraudulent IDs and spot manipulation patterns in photos. Machine learning continuously improves accuracy by learning from new data. Facial recognition verifies your selfie against your ID photo with pinpoint precision, tested under the NIST FRVT benchmark.

Meanwhile, Optical Character Recognition (OCR) pulls data from your documents instantly, and encryption technologies protect that data as it moves across systems.

For developers and organizations wanting to implement their own KYC verification solutions, Recognito’s face recognition SDK and ID document recognition SDK are reliable tools that simplify integration.

You can also explore Recognito’s GitHub repository to see how real-time AI verification systems evolve in practice.

 

How to Verify Your KYC Online Without the Hassle

If you haven’t tried KYC verification online yet, it’s simpler than you think. Just open the app, upload your ID, take a selfie, and let the system handle the rest.

Most platforms now allow you to check online KYC status in real time. You’ll see exactly when your verification moves from “in review” to “approved.”

Curious about how it all works behind the scenes? Try the ID Document Verification Playground. It’s an interactive way to see how modern KYC systems scan, process, and authenticate IDs no real data required.

According to Allied Market Research, the global eKYC verification market is expected to reach nearly $2.4 billion by 2030, growing at over 22% CAGR. That surge shows just how essential digital KYC has become to the future of online services.

The Future of KYC Authentication

The next generation of KYC authentication is going to feel almost invisible. Biometric technology and AI are merging to make verification instant; imagine unlocking your account just by looking at your camera.

In India, systems like UIDAI’s Aadhaar e-KYC have already transformed how millions of users open bank accounts and access government services. It’s fast, paperless, and secure.

Global research by PwC on Digital Identity predicts that the world is moving toward a unified digital identity model, one verified profile for all services, from banking to healthcare.

This is the future of KYC identity verification: a seamless, secure, and user-friendly process that builds trust without slowing you down.

 

Final Thoughts

In the end, KYC verification online is about more than compliance; it’s about confidence. It ensures that businesses and customers can interact safely in an increasingly digital world.

It eliminates paperwork, reduces fraud, and makes onboarding faster and smarter. That’s progress everyone can appreciate.

If you’re a business exploring modern KYC verification solutions, check out Recognito. Their AI-powered technology helps companies verify identities accurately, comply with regulations, and create frictionless user experiences.

 

Frequently Asked Questions

 

1. How does KYC verification online work?

You upload your ID, take a selfie, and the system checks both using AI. KYC verification online confirms your identity in just a few minutes.

 

2. Is eKYC verification safe to use?

Yes, eKYC verification is secure since it uses encryption and biometric checks. Your personal data stays protected throughout the process.

 

3. What do I need to verify my KYC online?

To verify KYC online, you only need a valid government ID and a selfie. The rest is handled automatically by the system.

 

4. Why are companies using online KYC checks now?

Businesses use online KYC check systems because they’re faster and help prevent fraud. It also makes onboarding easier for users.

 

5. What makes a good KYC verification solution?

A great KYC verification solution should be fast, accurate, and compliant with privacy laws. It should make KYC identity verification simple for both users and companies.

The RevOps Tightrope: When "Just Connect It" Becomes a Breach Vector

If you're in Revenue Operations, Marketing Ops, or Sales Ops, your core mandate is velocity. Every week, someone needs to integrate a new tool: "Can we connect Drift to Salesforce?" "Can we push this data into HubSpot?" "Can you just give marketing API access?" You approve the OAuth tokens, you connect the "trusted" apps, and you enable the business to move fast. You assume the security team has your back.

But the ShinyHunters extortion spree that surfaced this year, targeting Salesforce customer data, exposed the deadly vulnerability built into that convenience-first trust model. This wasn't just a "cyber event" for the security team; it was a devastating wake-up call for every operator who relies on that data. Suddenly, every connected app looks like a ticking time bomb, filled with sensitive PII, contact records, and pipeline data.

Anatomy of the Attack: Hacking Authorization, Not Authentication

The success of the ShinyHunters campaign wasn't about a software bug or a cracked password. It was about trusting the wrong thing. The attackers strategically bypassed traditional MFA by exploiting two key vectors: OAuth consent and API token reuse.

Path 1: The Fake "Data Loader" That Wasn't (OAuth Phishing)

The most insidious vector involved manipulating human behavior through advanced vishing (voice phishing).

Attackers impersonated internal IT support, creating urgency to trick an administrator. Under the pretext of fixing an urgent issue, the victim was directed to approve a malicious Connected App—often disguised as a legitimate tool like a Data Loader.

The result was the same as a physical breach: the employee, under false pretenses, granted the attacker’s malicious app a valid, persistent OAuth access token. This token is the backstage pass—it gave the attacker free rein to pull vast amounts of CRM data via legitimate APIs, quietly and without triggering MFA or login-based alerts.

Path 2: Token Theft in the Shadows (API Credential Reuse)

The parallel vector targeted tokens from already integrated third-party applications, such as Drift or Salesloft.

Attackers compromised these services to steal their existing OAuth tokens or API keys used for the Salesforce integration. These stolen tokens act like session cookies: they are valid, silent, and allow persistent access to Salesforce data without ever touching a login page. Crucially, once stolen, these tokens can be reused until revoked, representing an open back door into your most valuable data.

Both paths point to a single conclusion: your digital ecosystem is built on convenience-first trust, and in the hands of sophisticated attackers, trust is the ultimate exploitable vulnerability.

The Trust Problem: Securing Logins, Not Logic

For years, security focused on enforcing strong MFA and password rotation. But the ShinyHunters campaign proved that this focus is too narrow.

You can enforce the best MFA, rotate passwords monthly, and check all your compliance boxes. But if an attacker can:

Convince an employee to approve a fake OAuth app, or Steal a token that never expires from an integration

...then everything else is just window dressing.

The uncomfortable truth for RevOps is that attackers are not exploiting a zero-day; they are hacking how you work. The industry-wide shift now, led by NIST and CISA, is toward phishing-resistant authentication. Why? Because the weak spots exploited in this breach - reusable passwords and phishable MFA - are eliminated when you replace them with cryptographic, device-bound credentials.

Where HYPR Fits In: Making Identity Deterministic, Not Trust-Based

HYPR was built for moments like this—when the mantra "never trust, always verify" must transition from a slogan into an operational necessity. Our Identity Assurance platform delivers the deterministic certainty needed to stop both forms of token theft cold.

Here’s how HYPR's approach prevents these breach vectors:

Eliminating Shared Secrets: HYPR Authenticate uses FIDO2-certified passwordless authentication. There is no password or shared secret for attackers to steal, replay, or trick a user into approving. This automatically eliminates the phishable vector used in Path 1. Domain Binding Stops OAuth Phishing: FIDO Passkeys are cryptographically bound to the specific URL of the service. If an attacker tries to trick a user into authenticating on a malicious domain (OAuth phishing), the key will not match the registered domain, and the authentication will fail instantly and silently. Deterministic Identity Proofing for High-Risk Actions (HYPR Affirm): Granting new app privileges is a high-risk action. HYPR Affirm brings deterministic identity proofing—using live liveness checks, biometric verification, and document validation—before any credential or app authorization is granted. This stops social engineering attacks aimed at the help desk or an administrator because you ensure the person making the request is the rightful account owner. No Unchecked Trust (HYPR Adapt): Every high-risk action - whether it’s a new device enrollment, a token reset, or a highly-privileged connected app approval - can trigger identity re-verification. If your HYPR Adapt risk engine detects anomalous API activity (Path 2), it can dynamically challenge the user to re-authenticate with a phishing-resistant passkey, immediately revoking the session/token until certainty is established.

This platform isn't about simply locking things down; it's about building secure, efficient systems that can verify who is on the other end with cryptographic certainty.

Next Steps for RevOps: Championing the Identity Perimeter

The Salesforce breach was about trust at scale. As RevOps leaders, you need to protect not just the data, but how that data is accessed and shared.

Here is what you must prioritize now:

Revisit Your Integrations: Know which connected apps have offline access and broad permissions (e.g., refresh_token, full) to your Salesforce data - and ruthlessly trim the list to only essential tools. Automate Least Privilege: Implement a policy for temporary tokens and expiring scopes. Move away from permanent credentials where possible, forcing periodic re-consent. Champion Phishing-Resistant MFA: Make FIDO2 Passkeys the minimum baseline for every high-value user and administrator. Anything less is a calculated risk you can’t afford.

The uncomfortable truth is: Attackers did not utilize brute force - they strategically weaponized OAuth consent and token theft. The good news is that passwordless, phishing-resistant authentication would have stopped both paths cold.

Unlock the pipeline velocity you need with the deterministic security you can trust.

👉 Request a Demo of the HYPR Identity Assurance Platform Today.

Teams must tightly control IE mode and educate the staff about social engineering to safeguard devices.

Wind Tunnel gets reports, automation, multiple conductors

All the hard work put into Wind Tunnel, our scale testing suite, is starting to become visible! We’re now collecting metrics from both the host OS and Holochain, in addition to the scenario metrics we’d already been collecting (where zome call time and arbitrary scenario-defined metrics could be measured). We’re also running scenarios on an automated schedule and generating reports from them. Our ultimate goals are to be able to:

monitor releases for performance improvements and regressions, identify bottlenecks for improvement, and turn report data into release-specific information you can use and act upon in your app development process.

Finally, Wind Tunnel is getting the ability to select a specific version of Holochain right from the test scenario, which will be useful for running tests on a network with a mix of different conductors. It also saves us some dev ops headaches, because the right version for a test can be downloaded automatically as needed.

Holochain 0.6: roughly two (ideal) weeks remaining

Our current estimates predict that Holochain 0.6’s first release will take about two team-weeks to complete. Some of the dev team is focused on Wind Tunnel and other tasks, so this may not mean two calendar weeks, but it’s getting closer. To recap what we’ve shared in past Dev Pulses, 0.6 will focus on:

Warrants — reporting validation failures to agent activity authorities, who collect and supply these warrants to anyone who asks for them. As soon as an agent sees and validates a warrant, they retain it and block the bad agent, even if they aren’t responsible for validating the agent’s data. If the warrant itself is invalid (that is, the warranted data is valid), the authority issuing the warrant will be blocked. Currently warrants are only sent in response to a get_agent_activity query; in the future, they’ll be sent in response to other DHT queries too. Blocking — the kitsune2 networking layer will allow communication with remote agents to be blocked, and the Holochain layer will use this to block agents after a warrant against them is discovered. Performance improvements — working with Unyt, we’ve discovered some performance issues with must_get_agent_activity and get_agent_activity which we’re working on improving.
Open-source Holo Edge Node

You have probably already seen the recent announcements from Holochain and Holo (or the livestream), but if not, here’s the news from the org: Holo is open-sourcing its always-on node software in an OCI-compliant container called Edge Node.

This is going to do a couple things for hApp developers:

make it easier to spin up always-on nodes to provide data availability and redundancy for your hApp networks, provide a base dockerfile for devs to add other services to — maybe an SMS, email, payment, or HTTP gateway for your hApp, and allow more hosts to set up nodes, because Docker is a familiar distribution format

I think this new release connects Holo back to its roots — the decentralised, open-source values that gave birth to it — and we hope that’ll mean more innovation in the software that powers the Holo network. HoloPort owners will need to be handy with the command line, but a recent survey found that almost four fifths of them already are.

So if you want to get involved, either to bootstrap your own infrastructure or support other hApp creators and users, here’s what you can do:

Download the latest HolOS ISO for HoloPorts, other hardware, VMs, and cloud instances. Download the Edge Node container for Docker, Kubernetes, etc. Get in touch with Rob from Holo on the Holo Forum, the Holo Edge Node Support Telegram, Calendly, or the DEV.HC Discord (you’ll need to self-select Access to: Projects role in the #select-a-role channel, then go to the #always-on-nodes channel). Join the regular online Holo Huddle calls for support (get access to these calls by getting in touch with Rob above). Soon, there’ll be a series of Holo Forge calls for people who want to focus on building the ecosystem (testing, modifying the Edge Node container, etc).
Next Dev Office Hours: 15 Oct 2025

Join us on the DEV.HC Discord at 16:00 UTC for the next Dev Office Hours call — bring your ideas, questions, projects, bugs, and hApp development challenges to the dev team, where we’ll do our best to respond to them. See you there!

Nineteen-year-old Massachusetts resident Matthew Lane faces a possible seven-year prison sentence after admitting to hacking the education technology firm PowerSchool and stealing the personal information of millions of students and teachers, according to The Record, a news site by cybersecurity firm Recorded Future.

Prospect a UK trade union representing nearly 160,000 engineers, scientists, managers, and other specialists working for BT Group, Siemens, BAE Systems, and others has confirmed having data from its members stolen following a June cyberattack, The Register reports.

GBHackers News reports that KFC Venezuela was claimed to have been compromised in a cyberattack, with the threat actor peddling a 405 MB CSV file with data from over 1.067 customers.

Major Australian airline Qantas had information pilfered from a June attack against its Salesforce database leaked by hacking collective Scattered Lapsus$ Hunters following its refusal to pay the demanded ransom, according to The Guardian.

Decentralized identity is becoming the backbone of how organizations, governments, and individuals exchange trusted information.

In this live workshop, Agne Caunt (Product Owner, Dock Labs) and Richard Esplin (Head of Product, Dock Labs) guided learners through the foundations of decentralized identity: how digital identity models have evolved, the Trust Triangle that powers verifiable data exchange, and the technologies behind it: from verifiable credentials to DIDs, wallets, and biometric-bound credentials.

Below are the core takeaways from the session.

Hey folks 👋

Following the rapid-fire releases in the last few newsletters, we have a quieter one for you this edition.

Everyone’s busy working on some bigger features and editions to Kin, meaning not much has gone out in the last two weeks.

So instead, this’ll be a sneak peek into what’s coming really soon - with the usual super prompt at the end for you.

What (will be) new with Kin 🕑 Your Kin, expanded 🌱

The biggest change coming up is our rollout of Kin Accounts. Don’t worry: these accounts won’t store any of your conversation data - just some minimal basics that we’ll keep secure.

We’ll be introducing Kin Accounts to lay the groundwork for multi-device sync (which inches closer!), more integrations into Kin, and eventually Kin memberships.

More information on Kin Accounts, and what we mean by “minimal basics” will come out soon too, so you stay fully informed

More personal advisors and notifications 🧩

Off the back of the positive feedback for the advisor updates covered in the last edition, we’re continuing to expand their personalities and push notification abilities.

Very soon, you’ll notice that each advisor feels even more unique, more understanding of you, and more suited to their role - both in chat and in push notifications.

And in case you missed it, you have full control over the push notification frequency. If you want to hear from an advisor while outside Kin more, you can turn it up in each advisor’s edit tab from the home screen - and if you want to hear less from them, you can turn it down more.

Memory continues to grow 🧠

Memory appears in these updates almost every time - and that’s because we really are working on it almost every week.

The imminent update will continue to work toward our long-standing goal of making Kin the best personal AI at understand time in conversations - something we’ve explained in more depth in previous articles.

More on this when the next stage of the update rolls out!

Journaling, refined by you yet again 📓

Similarly, Journaling also makes another appearance as we continue to re-work it according to your feedback. Guided daily and weekly Journals will help you track your progress, more visible streak counts will help keep you involved, and a new prompting system will help entries feel more insightful. You’ll hear more about exactly what’s changing once we’ve released some of it.

Start a conversation 💬

I know this reminder is in every newsletter - but that’s because it’s integral to Kin.

Kin is built for you, with your ideas. So, your feedback is essential to helping us know whether we’re making things the way you like them.

The KIN team is always around at hello@mykin.ai for anything, from feature feedback to a bit of AI discussion (though support queries will be better helped over at support@mykin.ai).

To get more stuck in, the official Kin Discord is still the best place to interact with the Kin development team (as well as other users) about anything AI.

We have dedicated channels for Kin’s tech, networking users, sharing support tips, and for hanging out.

We also regularly run three casual calls every week - you’re welcome to join:

Monday Accountability Calls - 5pm GMT/BST
Share your plans and goals for the week, and learn tips about how Kin can help keep you on track.

Wednesday Hangout Calls - 5pm GMT/BST
No agenda, just good conversation and a chance to connect with other Kin users.

Friday Kin Q&A - 1pm GMT/BST
Drop in with any questions about Kin (the app or the company) and get live answers in real time.

Kin is yours, not ours. Help us build something you love!

Finally, you can also share your feedback in-app. Just screenshot to trigger the feedback form.

Our current reads 📚

Article: OpenAI admits to forcibly switching subscribers away from GTP 4 and 5 models in some situations
READ - techradar.com

Article: San Diego State University launch first AI responsibility degree in California
READ - San Diego State University

Article: Australia’s healthcare system adopting AI tools
READ - The Guardian

Article: California’s AI laws could balance innovation and regulation
READ - techcrunch.com

This edition’s super prompt 🤖

This week, your Kin will help you answer the question:

“How can I better prepare for change?”

If you have Kin installed and up to date, you can tap the link below (on mobile!) to explore how you think about pressure, and how you can keep cool under it.

As a reminder, you can do this on both iOS and Android.

Open prompt in Kin

We build Kin together 🤝

If you only ever take one thing away from these emails, it should be that you have as much say in Kin as we do (if not more).

So, please chat in our Discord, email us, or even just shake the app to get in contact with anything and everything you have to say about Kin.

With love,

The KIN Team

Investigators who want to dismantle entire drug trafficking networks know it won't happen by catching a few dealers with narcotics in a car. High-level drug dealers rarely handle drugs directly; they insulate themselves from the physical product. What they do control is the financial infrastructure that sustains the entire operation.

Are you looking for a fun family activity on the big screen? Our comprehensive guide to new kids movies in theaters is here to help you plan the perfect outing. We’ve rounded up all the latest releases and must-see films, complete with summaries and reasons to watch. Get ready to discover your next family favorite!

Why a Trip to the Movies is Great for Kids A chance for screen-free, focused family time

In a world full of distractions from phones and tablets, a Kids Movies in Theaters provides a unique opportunity for families to disconnect and enjoy a shared experience without interruptions.

An immersive experience with a huge screen and dynamic sound

The big screen, surround sound, and dark room create a magical atmosphere. This makes every moment more exciting and memorable than watching a movie at home.

A fun way to escape into a new world of adventure

From animated adventures to fantastical tales, kids can let their imaginations run wild and be transported to different worlds and stories.

Creates lasting memories for the whole family

A trip to the movies is more than just watching a film. It’s an event that creates a special memory you can look back on for years to come.

Now Playing: Top New Kids Movies in Theaters Top New Kids Movies in Theaters – The Bad Guys 2 Release Date: August 1, 2025 Quick Summary: Our now-reformed Bad Guys are struggling to adapt to their “Good Guy” lives when they are pulled out of retirement for one last, globe-trotting caper. This time, they’re forced to work alongside an all-female squad of criminals, “The Bad Girls.” Why It’s a Must-See: With its witty humor, clever plot, and dynamic animation, this sequel is a great pick for older kids who love action-packed comedies with valuable lessons about friendship and redemption. Top New Kids Movies in Theaters – Dora: Magic Mermaid Adventures Release Date: September 18, 2025 Quick Summary: This limited-time theatrical event features a collection of brand-new episodes. Join Dora and Boots as they turn into mermaids to make new underwater friends and go on an adventure. Why It’s a Must-See: This short, fun-filled aquatic adventure is perfect for younger children, featuring familiar characters and a positive message. Top New Kids Movies in Theaters – Gabby’s Dollhouse: The Movie Release Date: September 20, 2025 Quick Summary: The popular preschool hit makes its way to the big screen! Gabby and her grandmother’s road trip take an unexpected turn, leading Gabby on a live-action/animated adventure with catchy songs and a heartwarming story about reuniting with friends and her beloved dollhouse. Top New Kids Movies in Theaters – Toy Story (30th Anniversary Re-release) Release Date: September 12, 2025 Quick Summary: Celebrate three decades of friendship and adventure with the theatrical re-release of the original film that started it all. Join Woody, Buzz, and the rest of Andy’s toys on their unforgettable journey to escape the clutches of the menacing neighbor, Sid, and reunite with their owner. Why It’s a Must-See: A timeless classic. This is a perfect opportunity for parents to introduce the magic of Toy Story to a new generation on the big screen, or to relive the cherished moments of their own childhood. Top New Kids Movies in Theaters – Dude Perfect: The Hero Tour Release Date: September 26, 2025 Quick Summary: The sensational YouTube crew brings their sold-out live show to the big screen for a new cinematic experience. This film provides exclusive backstage access, action-packed battles, and classic Dude Perfect segments for families and superfans alike. Why It’s a Must-See: This is a one-of-a-kind event that allows fans to see The Dudes up close like never before, capturing the high-energy excitement and incredible trick shots of their live tour in an immersive format. Expert Tips for a Smooth Kids Movies in Theaters Choose the Right Showtimes

Suggest matinee showings for younger kids to align with nap schedules, and note any “sensory-friendly” screenings that might be available for a more comfortable experience.

Pack Smart

Advise parents to bring a light sweater, a small pillow, or their child’s favorite blanket for comfort during the film.

The Snacks Strategy

Mentions the importance of pre-planning snacks to save money and ensure a quick bathroom break is taken before the movie starts to avoid interruptions.

Set Expectations

Suggest talking to kids beforehand about theater etiquette, such as staying in their seats, keeping quiet during the film, and not kicking the seat in front of them.

Conclusion: Your Family Adventure Awaits

A trip to the movies is more than just a quick outing – it’s a chance to create shared experiences and lasting memories. From the awe of the big screen to the thrill of a new story, the magic of cinema offers a unique way for families to connect and have fun together. But for those looking to find movie showtimes or information online without the annoyance of pop-up ads and trackers, consider using Herond browser. This new-generation browser is specifically designed to block intrusive ads, ensuring a clean and uninterrupted search.

So, whether you’re introducing them to a timeless classic or discovering a brand-new adventure, use this guide to plan your next family movie night. Your next great story is waiting to be experienced on the big screen!

DOWNLOAD HEROND About Herond

Herond Browser is a Web browser that prioritizes users’ privacy by blocking ads and cookie trackers, while offering fast browsing speed and low bandwidth consumption. Herond Browser features two built-in key products:

Herond Shield: an adblock and privacy protection tool; Herond Wallet: a multi-chain, non-custodial social wallet.

Herond aims at becoming the ultimate Web 2.5 solution that sets the ground to further accelerate the growth of Web 3.0, heading towards the future of mass adoption.

Join our Community!

The post Guide to New Kids Movies in Theaters appeared first on Herond Blog.

The post Guide to New Kids Movies in Theaters appeared first on Herond Blog.

Finding the perfect game store application can transform your gaming experience, offering access to the latest titles, exclusive deals, and seamless cross-platform play. In 2025, platforms like Steam, Epic Games Store, and Nintendo eShop compete to deliver the best for gamers. This ultimate guide explores key factors – game selection, pricing, usability, and security. This will help you choose the ideal app. Dive in to find the best game store application for you!

Why Choosing the Right Game Store Application Matters

Selecting the right game store application can elevate your gaming experience by providing access to a vast library of titles, exclusive deals, and seamless cross-platform support. Apps like Steam or Epic Games Store offer diverse genres, from AAA blockbusters to indie gems, ensuring you find games that match your preferences. A well-chosen app enhances your ability to discover new releases and connect with gaming communities effortlessly.

Security, user-friendly navigation, and robust features are critical when picking a game store application. In 2025, top platforms integrate Web3 for NFT purchases, adding value through digital ownership. Choosing an app with reliable transactions and cloud saves ensures your progress is safe across devices, maximizing convenience and enjoyment for every gaming session.

Key Factors to Consider When Choosing a Game Store Application Game Selection and Exclusives Evaluation: When choosing a game store application, prioritize platforms like Steam, with its vast library of over 50,000 titles, or Epic Games Store, known for exclusives like Fortnite and Borderlands 3. Compare their offerings to match your gaming preferences, from indie gems to AAA blockbusters. Why It Matters: A diverse selection ensures access to your favorite genres – RPGs, shooters, or puzzles and the latest releases without delays, keeping you in the gaming loop. Benefit: Find tailored games that elevate your experience, whether you’re a casual player or a hardcore enthusiast. Pricing and Deals Evaluation: Compare pricing in game store applications—Steam’s seasonal sales offer up to 80% off, while Epic Games Store provides weekly free games. Subscriptions like Xbox Game Pass grant access to 100+ titles for a flat fee, ideal for budget-conscious gamers. Why It Matters: Smart pricing and frequent deals stretch your gaming budget, making premium titles or DLCs more accessible without breaking the bank. Benefit: Affordable purchases mean more games and less financial strain, enhancing your gaming value. User Interface and Usability Evaluation: Assess game store application interfaces for ease of use—PlayStation Store offers intuitive console navigation, while GOG’s DRM-free PC setup prioritizes simplicity and fast downloads. Check search functionality and library organization for smooth access to titles. Why It Matters: A user-friendly interface saves time, reduces frustration, and speeds up game discovery and installation, critical for seamless gaming sessions. Benefit: Streamlined navigation enhances your experience, letting you focus on playing rather than troubleshooting. Cross-Platform Support and Cloud Saves Evaluation: Look for game store applications with cross-platform support, like Microsoft Store’s Xbox-PC integration for titles like Halo Infinite, enabling crossplay and cross-progression. Cloud saves ensure your progress syncs across devices, from consoles to mobiles. Why It Matters: Seamless multi-device gaming lets you switch platforms without losing progress, ideal for gamers on the go or with multiple devices. Benefit: Flexibility to play anywhere enhances convenience and immersion in your favorite games. Security and Payment Options Evaluation: Ensure game store applications offer encrypted transactions and diverse payment methods, including crypto for Web3 purchases like in-game NFTs. Steam and Epic support PayPal and cards, while emerging platforms integrate blockchain for secure digital assets. Why It Matters: Robust security protects against fraud, and flexible payments, including crypto, align with modern gaming economies like Web3 marketplaces. Benefit: Safe transactions and varied options safeguard your funds while enabling cutting-edge purchases. Top 5 Game Store Applications in 2025 Steam Vast Library: Steam’s massive collection of over 50,000 titles spans genres from indie hits to AAA blockbusters, ensuring endless discovery for every gamer. Sales and Deals: Frequent Steam sales and seasonal events slash prices up to 90%, making premium games affordable and exciting to hunt. Community Features: Robust forums, reviews, and mod support foster vibrant player interactions, turning solo play into a social adventure. Epic Games Store Free Games: Epic’s weekly free game giveaways let you build your library without spending, with titles like Fortnite always ready to claim. Exclusives: Timed exclusives like Gears of War and Rocket League draw players in with unique content not found elsewhere. User-Friendly Interface: Clean design and easy navigation make finding deals and launching games a breeze on PC. Nintendo eShop Switch Titles: eShop’s curated library of Nintendo exclusives like Mario and Zelda offers portable, family-oriented adventures. Family-Friendly Content: Kid-safe ratings and parental controls make it ideal for shared gaming on the go. eShop Cards and Deals: Digital gift cards and flash sales provide easy, budget-friendly ways to expand your Switch collection. Microsoft Store/Xbox Game Pass Cross-Platform Play: Seamless Xbox-PC integration supports crossplay in titles like Halo Infinite, bridging consoles and desktops. Subscription Model: Game Pass unlocks 100+ games for a low monthly fee, including day-one releases for constant variety. Cloud Gaming: Xbox Cloud Play streams games to mobile or PC, perfect for on-the-go access without downloads How to Use Herond Browser to Enhance Your Game Store Experience

Herond Browser elevates your game store application experience with its secure, ad-free environment, perfect for exploring platforms like Steam, Epic Games Store, or Nintendo eShop. With tracker-blocking, your browsing stays private, protecting personal data while researching games, trailers, or Web3-integrated marketplaces for in-game NFTs, making your shopping seamless and safe.

Additionally, Herond Browser’s fast, multi-device syncing lets you browse game store applications on PC, mobile, or tablet without interruptions. Its Web3 capabilities, including Herond Wallet, enable secure crypto transactions for NFT purchases or in-game rewards on platforms like Epic. Whether checking reviews or pre-ordering 2025’s hottest titles, Herond Browser ensures a smooth, secure experience, letting you focus on gaming, not browsing hassles.

DOWNLOAD HEROND Conclusion

Choosing the best game store application in 2025 transforms your gaming with top titles, unbeatable deals, and seamless cross-platform play. From Steam’s vast library to Epic’s free games and Nintendo eShop’s family-friendly exclusives, the right app elevates your experience. Prioritize selection, pricing, usability, and security to match your needs. Download Herond Browser to explore game store applications securely, leveraging its ad-free, VPN-protected browsing and Web3 integration for NFT rewards. Start your gaming journey today!

About Herond

Herond Browser is a cutting-edge Web 3.0 browser designed to prioritize user privacy and security. By blocking intrusive ads, harmful trackers, and profiling cookies, Herond creates a safer and faster browsing experience while minimizing data consumption.

To enhance user control over their digital presence, Herond offers two essential tools:

Herond Shield: A robust adblocker and privacy protection suite. Herond Wallet: A secure, multi-chain, non-custodial social wallet.

As a pioneering Web 2.5 solution, Herond is paving the way for mass Web 3.0 adoption by providing a seamless transition for users while upholding the core principles of decentralization and user ownership.

Have any questions or suggestions? Contact us:

On Telegram https://t.me/herond_browser DM our official X @HerondBrowser Technical support topic on https://community.herond.org

The post The Ultimate Guide to Choosing the Best Game Store Application for You appeared first on Herond Blog.

The post The Ultimate Guide to Choosing the Best Game Store Application for You appeared first on Herond Blog.

Get ready for an epic gaming year with the top 10 new Switch games of 2025! From Pokémon Legends: Z-A to Metroid Prime 4: Beyond, Nintendo’s lineup delivers thrilling adventures, stunning visuals, and Switch 2-ready innovations. Whether you’re into RPGs, platformers, or cozy sims, these titles redefine portable gaming. Discover must-play games that bring fresh excitement to your Nintendo Switch in 2025 – dive in now!

Why 2025 Is a Banner Year for New Switch Games

Get ready, gamers: 2025 is shaping up to be a truly banner year for the Nintendo Switch library. Far from slowing down, the console is hitting a new stride, backed by an unprecedented flood of major first-party releases and crucial third-party ports that defy the platform’s age. This isn’t just about sheer volume; it’s about quality, with developers leveraging optimized technology to deliver incredible AAA experiences.

These high-quality games are specifically designed for the Switch’s core strength: gaming anywhere. Whether you’re looking for epic RPGs during your commute or seamless multiplayer adventures on the couch, 2025 confirms the Switch remains the indispensable console for flexible, high-quality play that fits your lifestyle.

The Top 10 New Switch Games You Can’t Miss in 2025 Game 1: Pokémon Legends: Z-A (October 2025)

Description: Open-world RPG in Lumiose City with new Pokémon and Mega Evolutions, blending real-time exploration and battles, optimized for Switch and Switch 2.

Why You Don’t Miss It?: Co-op exploration for teaming up with friends; Switch 2 boosts visuals and speed.

Game 2: Metroid Prime 4: Beyond (Summer 2025)

Description: First-person adventure featuring Samus Aran exploring uncharted planets with dynamic combat and puzzle-solving, optimized for Switch and Switch 2.

Why You Don’t Miss It?: Stunning 4K visuals on Switch 2 and immersive scanning mechanics enhance exploration.

Game 3: Donkey Kong Country Returns HD (November 2025)

Description: Remastered platformer with Donkey Kong and Diddy Kong, featuring co-op brawling and vibrant jungle levels, optimized for Switch and Switch 2.

Why You Don’t Miss It?: Nostalgic gameplay with crisp HD visuals and smoother controls on Switch 2.

Game 4: Super Mario Galaxy Bundle (Fall 2025)

Description: Remastered Wii classics featuring Mario’s cosmic adventures, with refined motion controls and vibrant 3D levels, optimized for Switch and Switch 2.

Why You Don’t Miss It?: Timeless 3D platforming with upgraded visuals appeals to all ages.

Game 5: Kirby Air Riders (November 2025)

Description: A vibrant racing adventure starring Kirby on warp stars, speeding through colorful worlds with dynamic tracks, optimized for Switch and Switch 2.

Why You Don’t Miss It?: Whimsical multiplayer races and unique power-ups deliver fun for all ages.

Game 6: Two Point Museum (October 2025)

Description: A quirky tycoon sim where you manage eccentric museum exhibits and thrilling expeditions, designed for Switch with charming visuals.

Why You Don’t Miss It?: Humorous management and endless replayability keep you hooked.

Game 7: Yakuza Kiwami & Kiwami 2 (November 2025)

Description: Remastered crime dramas with intense brawling and gripping stories, optimized for Switch’s portability and Switch 2’s enhanced visuals.

Why You Don’t Miss It?: Deep narratives and on-the-go play captivate fans

Game 8: Little Nightmares III (October 2025)

Description: A co-op horror puzzle adventure set in twisted, eerie worlds, built for Switch with haunting visuals and teamwork mechanics.

Why You Don’t Miss It?: Atmospheric scares and challenging puzzles thrill players.

Game 9: Dragon Quest I & II HD-2D (October 2025)

Description: Remade JRPG classics with stunning HD-2D visuals and turn-based combat, optimized for Switch and Switch 2.

Why You Don’t Miss It?: Timeless quests captivate RPG fans with modern flair.

Game 10: Tales of the Shire: A Lord of the Rings Game (2025)

Description: A cozy life sim in Hobbiton, featuring farming, crafting, and quests in a charming Middle-earth setting for Switch.

Why You Don’t Miss It?: Relaxing adventures offer serene escapism

How to Get Ready for These New Switch Games Pre-Order Early: Secure titles like Pokémon Legends: Z-A via Nintendo eShop to ensure day-one access and exclusive bonuses. Check Switch 2 Compatibility: Verify games support both original Switch and Switch 2 for optimal graphics and performance. Join Gaming Communities: Engage on platforms like Reddit or Discord for tips, updates, and multiplayer squads. Use Herond Browser: Explore trailers and pre-orders securely with ad-free Conclusion

The top 10 new Switch games of 2025, from Pokémon Legends: Z-A to Tales of the Shire, bring thrilling adventures, stunning visuals, and Switch 2 enhancements for every gamer. These titles redefine portable gaming with co-op, RPGs, and cozy sims. Discover must-play experiences that elevate your Nintendo Switch with innovative gameplay and cross-platform features. Dive into 2025’s unmissable Switch games and start playing today!

DOWNLOAD HEROND About Herond

Herond Browser is a cutting-edge Web 3.0 browser designed to prioritize user privacy and security. By blocking intrusive ads, harmful trackers, and profiling cookies, Herond creates a safer and faster browsing experience while minimizing data consumption.

To enhance user control over their digital presence, Herond offers two essential tools:

Herond Shield: A robust adblocker and privacy protection suite. Herond Wallet: A secure, multi-chain, non-custodial social wallet.

As a pioneering Web 2.5 solution, Herond is paving the way for mass Web 3.0 adoption by providing a seamless transition for users while upholding the core principles of decentralization and user ownership.

Have any questions or suggestions? Contact us:

On Telegram https://t.me/herond_browser DM our official X @HerondBrowser Technical support topic on https://community.herond.org

The post Top 10 New Switch Games You Can’t Miss in 2025 appeared first on Herond Blog.

The post Top 10 New Switch Games You Can’t Miss in 2025 appeared first on Herond Blog.

Tired of platform walls stopping you from gaming with friends? Crossplay is the new standard, and 2025 is its peak year. This guide from Herond delivers the definitive list of the Top Crossplay Games 2025, rated for their quality and seamless connection. It’s time to break down limits. Discover the perfect titles to play and win with your friends, anywhere!

Introduction

We all know the frustration: getting ready to game with friends only to realize your PC can’t join their PlayStation lobby, or your Xbox buddy is locked out. That simple hardware difference has killed countless weekend plans and epic team-ups, leaving players divided by platform walls. However, that era of platform segregation is officially over. Crossplay is no longer a premium feature – it’s the definitive 2025 standard for any game that values its community. If a title wants to thrive, it must let you play with friends, period.

Herond is here to help you navigate this newly connected landscape. We’ve compiled the definitive list of the best crossplay games for 2025. This list cuts through noise and is meticulously evaluated based on quality, rock-solid connection stability, and community size. Forget the guesswork; these are the games ready for your squad, wherever they log in. It’s time to break down the limits and find the perfect titles where you and your friends can play and win together, anywhere!

Why Crossplay is Essential in 2025 Social Connectivity

Crossplay games revolutionize social gaming by uniting friends across devices like PS5, Xbox, PC, and mobile. No platform barriers mean you can jump into matches with buddies, regardless of their device.

Game Longevity

Crossplay games extend a title’s lifespan by expanding the player base across platforms. Larger, diverse communities keep matchmaking vibrant and servers active longer. Whether on console or PC, crossplay ensures your favorite games stay relevant.

Value for Gamers

Crossplay games save you money and hassle by eliminating the need to repurchase titles or manage multiple accounts to play with different friend groups. One game, one account, all platforms – maximum convenience.

The Top 10 Crossplay Games of 2025 Fortnite

Fortnite remains the king of crossplay in 2025, blending battle royale action with creative building and live events. Play with squads on PS5, Xbox, PC, Switch, or mobile, all synced via Epic accounts. Its massive updates and zero platform barriers make it ideal for casual drop-ins or epic tournaments.

Apex Legends

Apex Legends delivers fast-paced hero shooter thrills with full crossplay support across PS5, Xbox, PC, and Switch. Respawn’s legends and tactical abilities shine in squads, and 2025’s new seasons add fresh maps and weapons, ensuring endless replayability for competitive gamers.

Rocket League

Rocket League’s soccer-meets-cars chaos supports crossplay on PS5, Xbox, PC, Switch, and mobile. Epic’s acquisition keeps it free-to-play with ranked matches and custom arenas, making it a go-to for quick, high-octane sessions with friends on any device.

Minecraft

Minecraft’s endless creativity thrives with crossplay via Bedrock Edition on PS5, Xbox, PC, Switch, and mobile. Build worlds, survive adventures, or explore realms together – 2025’s updates enhance ray tracing and cross-platform realms for immersive, collaborative play.

Call of Duty

Warzone Warzone’s battle royale intensity features full crossplay on PS5, Xbox, PC, and mobile. Activision’s 2025 seasons introduce new maps and loadouts, letting you squad up across platforms for intense drops and victory royales without missing a beat.

Overwatch 2

Overwatch 2’s hero-based PvP shines with crossplay on PS5, Xbox, PC, and Switch. Blizzard’s evolving roster and team strategies keep matches dynamic, perfect for coordinating with friends regardless of console in 2025’s ranked climbs.

Sea of Thieves

Sea of Thieves offers pirate adventures with crossplay on PS5, Xbox, and PC. Rare’s open-world sailing, treasure hunts, and PvPvE encounters come alive in crews, with 2025 expansions adding new islands for shared seafaring escapades.

Monster Hunter Wilds

Monster Hunter Wilds roars into 2025 with crossplay on PS5, Xbox, PC, and Switch. Capcom’s co-op hunts against massive beasts demand teamwork across platforms, enhanced by seamless gear sharing and dynamic ecosystems.

Marvel Rivals

Marvel Rivals explodes as 2025’s hero shooter with crossplay on PS5, Xbox, PC, and mobile. NetEase’s Marvel roster delivers chaotic 6v6 battles, where cross-platform squads unleash combos like never before.

Diablo 4

Diablo 4’s dark fantasy loot grind supports crossplay on PS5, Xbox, PC, and Switch. Blizzard’s seasonal updates and hellish dungeons encourage group runs across devices, making 2025’s Vessel of Hatred expansion a cross-platform triumph.

Cross-Play vs. Cross-Progression: The Critical Difference Defining Cross-Play

Crossplay games enable seamless multiplayer across platforms like PS5, Xbox, PC, Switch, and mobile, uniting players regardless of device. This feature breaks down platform barriers, letting friends enjoy titles like Fortnite or Apex Legends together effortlessly.

Defining Cross-Progression (Cross-Save)

Cross-progression, or cross-save, allows players to use the same account and game data across different platforms, ensuring progress like levels, skins, or items transfers seamlessly. Games like Destiny 2 and Genshin Impact shine here, offering flexibility when switching from PC to mobile.

Top 3 Games with Best Cross-Progression

From our top 10 list, Destiny 2, Fortnite, and Genshin Impact lead in cross-progression for 2025. Destiny 2 syncs your Guardian’s gear across PS5, Xbox, and PC; Fortnite carries your skins and V-Bucks everywhere; and Genshin Impact ensures your characters transfer seamlessly.

Navigating Crossplay Challenges Input Disparity

Crossplay games often face input disparity between PC and console, with PC’s mouse precision outpacing controller inputs. Solutions like input filtering balance gameplay, as seen in titles like Apex Legends, ensuring fair matches across platforms.

Connection Stability

Lag and ping issues can disrupt crossplay games, especially in fast-paced titles like Call of Duty: Warzone. Stable internet and optimized servers are crucial for smooth multiplayer across PS5, Xbox, PC, and mobile.

Play crossplay games on Herond Browser

A secure, stable browser like Herond Browser is vital for optimal crossplay gaming performance. It protects against phishing and trackers while offering fast, ad-free access to gaming platforms and Web3 marketplaces.

Conclusion

The top crossplay games of 2025, like Fortnite, Apex Legends, and Minecraft, unite players across PS5, Xbox, PC, and mobile for seamless multiplayer fun. These titles offer endless entertainment with friends, no matter the platform. Discover and enjoy crossplay games securely with Herond Browser’s ad-free, enhanced by Web3 integration for in-game rewards. Start gaming anywhere, anytime in 2025!

DOWNLOAD HEROND About Herond

Herond Browser is a cutting-edge Web 3.0 browser designed to prioritize user privacy and security. By blocking intrusive ads, harmful trackers, and profiling cookies, Herond creates a safer and faster browsing experience while minimizing data consumption.

To enhance user control over their digital presence, Herond offers two essential tools:

Herond Shield: A robust adblocker and privacy protection suite. Herond Wallet: A secure, multi-chain, non-custodial social wallet.

As a pioneering Web 2.5 solution, Herond is paving the way for mass Web 3.0 adoption by providing a seamless transition for users while upholding the core principles of decentralization and user ownership.

Have any questions or suggestions? Contact us:

On Telegram https://t.me/herond_browser DM our official X @HerondBrowser Technical support topic on https://community.herond.org

The post Top Crossplay Games 2025: Play with Friends Anywhere appeared first on Herond Blog.

The post Top Crossplay Games 2025: Play with Friends Anywhere appeared first on Herond Blog.

The digital asset landscape is evolving at warp speed, and behind every major innovation is a powerful financial engine: Crypto Capital Venture (VC). This isn’t just about early-stage funding; it’s the strategic capital that is actively building and scaling the next generation of decentralized applications and blockchain infrastructure. Understanding the flow of this investment is crucial for anyone seeking an edge in the market. This guide is designed to demystify the ecosystem, offering a deep dive into the opportunities available to investors, providing crucial insights into how VC firms evaluate projects, and analyzing the top market trends that are currently shaping the financial future.

What Is Crypto Capital Venture?

Crypto Venture Capital is the strategic arm of investment focused on high-growth potential companies and protocols within the decentralized industry. It operates similarly to traditional VC but exclusively funds projects leveraging blockchain, decentralized finance (DeFi), NFTs, and Web 3.0 infrastructure.

Crypto VC firms function as more than just financiers; they are active partners in the ecosystem. They provide essential seed capital, strategic guidance, technical expertise, and crucial networking connections necessary to scale novel projects from a concept phase into a market-ready product.

Ultimately, Crypto VC is the primary engine driving innovation and adoption in the digital asset space. By identifying and funding the next generation of decentralized platforms, these investments directly shape market trends and accelerate the transition toward a more open, transparent, and user-owned internet.

Opportunities with Crypto Capital Venture 3.1. Recruiting and Talent Placement

Herond actively bridges the gap between top Web 3.0 talent and high-growth startups. Our platform ensures that companies secure the specialized expertise they need, while job seekers gain exclusive access to the most promising and impactful roles in the decentralized economy, accelerating careers across the industry.

3.2. Content and Market Insights

We empower investors with essential, real-time data. Through curated YouTube charts, news feeds, and specialized reports on altcoins, we deliver actionable market insights directly to our community. This content functions as a vital, free educational resource, allowing investors to stay informed and refine their strategies.

3.3. Staking and Investments

Herond provides clear avenues for maximizing digital asset returns. We facilitate participation in secure Cardano staking pools for generating passive income. Furthermore, we offer a realistic view of Venture Capital in the blockchain space, equipping users with the knowledge needed to make informed investment decisions that move beyond speculative trading.

Insights from Crypto Capital Venture Market Cycles and Altcoin Performance

Our latest analysis offers deep insights into Bitcoin’s cyclical behavior, examining historical patterns to anticipate future movements. Crucially, we detail how these macro cycles influence altcoin valuations, providing clarity on capital rotation and potential inflection points for high-growth digital assets across the ecosystem.

Expert Views on Early-Stage Talent

Securing exceptional talent is the single biggest predictor of success in Web 3.0. We gather expert perspectives on the skills required for early-stage ventures, focusing on the unique challenges of recruiting decentralized teams and the strategic importance of finding builders who can execute innovation under pressure.

2025 Predictions: The AI-Crypto Fusion

Looking ahead to 2025, our predictions center on the rapidly accelerating convergence of Artificial Intelligence and decentralized technology. This fusion is set to unlock transformative utility across DeFi, gaming, and infrastructure, creating powerful new market verticals and fundamentally redefining user interaction with crypto assets.

Crypto Capital Venture and 2025 Market Trends 5.1. Rising VC in Crypto

Venture Capital funding into crypto remains robust, evidenced by the $1.97 billion raised in Q2 2025 alone. This capital injection signals a significant shift, as investors increasingly prioritize later-stage funding rounds. This focus reflects a market maturing beyond initial concept phases to prioritize scalable projects with demonstrable traction.

5.2. Talent and Recruiting Boom

The demand for specialized talent is surging, particularly for experts skilled in blockchain and AI integration. To meet this critical need, our Crypto Capital Venture (CCV) services have successfully managed numerous global placements, effectively connecting high-growth startups with the technical leadership required to execute ambitious Web 3.0 roadmaps.

5.3. Staking and DeFi Growth

Decentralized Finance (DeFi) continues its upward trajectory, highlighted by the sustained expansion of major protocols like Cardano. Our CCV pools enable participants to capitalize directly on this growth, offering secure avenues for staking and passive yield generation while actively contributing to the stability and decentralization of the underlying network.

Conclusion

Crypto Venture Capital is fundamentally the fuel powering the Web 3.0 economy. As we’ve seen, understanding the flow of this capital—from the $1.97 billion invested in Q2 2025 to the strategic focus on later-stage projects and the rise of the AI-crypto fusion—is essential, not just for investors, but for anyone navigating this space. The opportunities are vast, but success hinges on having expert insights and a clear view of market cycles. By staying informed on talent trends and embracing the potential of DeFi and staking, you position yourself to capture maximum value. The future of decentralized finance is being built now, and informed capital is leading the way.

DOWNLOAD HEROND About Herond

Herond Browser is a Web browser that prioritizes users’ privacy by blocking ads and cookie trackers, while offering fast browsing speed and low bandwidth consumption. Herond Browser features two built-in key products:

Herond Shield: an adblock and privacy protection tool; Herond Wallet: a multi-chain, non-custodial social wallet.

Herond aims at becoming the ultimate Web 2.5 solution that sets the ground to further accelerate the growth of Web 3.0, heading towards the future of mass adoption.

Join our Community!

The post Crypto Capital Venture Explained: Opportunities, Insights, and Market Trends appeared first on Herond Blog.

The post Crypto Capital Venture Explained: Opportunities, Insights, and Market Trends appeared first on Herond Blog.

In our recent live podcast, Richard Esplin (Dock Labs) sat down with Andrew Hughes (VP of Global Standards, FaceTec) and Ryan Williams (Program Manager of Digital Credentialing, AAMVA) to unpack the new ISO standards for mobile driver’s licenses (mDLs).

One topic dominated the discussion: server retrieval.

 

 

The post Radiant Logic’s SCIM Support Recognized in 2025 Gartner® Hype Cycle™ for Digital Identity appeared first on Radiant Logic.

The post California’s Countdown to Zero Trust—A Practical Path Through Radiant Logic appeared first on Radiant Logic.

The post AI for Access Administration: From Promise to Practice appeared first on Radiant Logic.

 

 

 

The post Gartner Recognizes Radiant Logic as Leader in Identity Visibility and Intelligence Platforms appeared first on Radiant Logic.

The post Gartner® Recognizes Radiant Logic in the 2025 Hype Cycle™ for Zero Trust appeared first on Radiant Logic.

The post Identity: The Lifeline of Modern Healthcare appeared first on Radiant Logic.

The journey from a signed contract to a fully deployed security solution is one of the most challenging in enterprise technology. For a mission-critical function like identity, the stakes are even higher. It requires more than just great technology; it demands a true partnership to drive change across massive, complex organizations.

I sat down with HYPR’s SVP of Worldwide Sales, Doug McLaughlin, to discuss what it really takes to get from the initial sale to the finish line, and how HYPR works with customers to manage the complexities of procurement, organizational buy-in, and full-scale deployment for millions of users.

Let’s talk about the initial hurdles – procurement and legal. These processes can stall even the most enthusiastic projects. How do you get across that initial finish line?

Doug: By the time you get to procurement and legal, the business and security champions should be convinced of the solution's value. These teams aren't there to re-evaluate whether the solution is needed; they're there to vet who is providing it and under what terms. The biggest mistake you can make is treating them like a final sales gate.

Our approach is to be radically transparent and prepared. We have our security certifications, compliance documentation, and legal frameworks ready to go well in advance. We’ve already proven the business value and ROI to our champions, who then become our advocates in those internal procurement meetings. It’s about making their job as easy as possible. When you’ve built a strong, trust-based relationship across the organization, procurement becomes a process to manage efficiently, not an obstacle to overcome. The contract signature is less the "end" and more the "official beginning" of the real work.

You’ve navigated some of the largest passwordless deployments in history. Many people think the deal is done when the contract is signed. What’s the biggest misconception about that moment?

Doug: The biggest misconception is that the signature is the finish line. In reality, it’s the starting gun. For us, that contract isn’t an endpoint; it’s a formal commitment to a partnership. You've just earned the right to help the customer begin the real work of transformation.

In these large-scale projects, especially at global financial institutions or manufacturing giants, you’re not just installing software. You’re fundamentally changing a core business process that can touch every single employee, partner, and sometimes even their customers. If you view that as a simple handoff to a deployment team, you're setting yourself up for failure. The trust you built during the sales cycle is the foundation you need for the change management journey ahead.

When you’re dealing with a global corporation, you have IT, security, legal, procurement, and business units all with their own priorities. How do you start building the consensus needed for a successful rollout?

Doug: You have to build a coalition, and you do that by speaking the language of each stakeholder. I remember working with a major global bank. Their security team was our initial champion; they immediately saw how passkeys would eliminate phishing risk and secure their high-value transactions. But one of the key stakeholders was wary. Their primary concern was a potential surge in help desk calls during the transition, which would blow up their budget.

Instead of just talking about security with them, we shifted the conversation entirely and early. We presented the case study from another financial services deployment showing a 70-80% reduction in password-related help desk tickets within six months of rollout. We framed the project not as a security mandate, but as an operational efficiency initiative that would free up the team's time.

We connected the dots for them. Security got their risk reduction. IT saw a path to lower operational costs. The business leaders saw a faster, more productive login experience for their bankers. When each department saw its specific problem being solved, they became a unified force pushing the project forward. That's how you turn individual stakeholders into a powerful coalition.

That leads to the user. How do you get hundreds of thousands of employees at a global company to embrace a new way of signing in?

Doug: You can’t force change on people; you have to make them want it. A great example is a Fortune 500 manufacturing company we worked with. They had an incredibly diverse workforce. From corporate executives on laptops to factory floor workers using shared kiosks and tablets. Compounding this further, employees spanned the globe, from US, to China to LatAm and beyond. Let’s face it, a single, top-down email mandate was never going to work.

We partnered with them to create a phased rollout that respected these different user groups. For the factory floor, we focused on speed. The message was simple: "Clock in faster, start your shift faster." We trained the shift supervisors to be the local experts and put up simple, visual posters near the kiosks.

For the corporate employees, we focused on convenience and security, highlighting the ability to log in from anywhere without typing a password. We identified influential employees in different departments to be part of a pilot program. Within weeks, these "champions" were talking about how much easier their sign-in experience was. That word-of-mouth was more powerful than any corporate memo. The goal is to make the new way so demonstrably better that people are actively asking when it's their turn. That’s when adoption pulls itself forward.

Looking back at these massive, multi-year deployments, what defines a truly "successful" partnership for you?

Doug: Success isn’t the go-live announcement. It's six months later when the CISO tells you their help desk calls are down 70%. It's when an employee from a branch in Singapore sends unsolicited feedback about how much they love the new login experience. It’s when the customer’s security team stops seeing you as a vendor and starts calling you for advice on their entire identity strategy.

That's the real finish line. It's when the change has stuck, the value is being realized every day, and you’ve built a foundation of trust that you can continue to build on for years to come.

What's the biggest topic that keeps coming up in your customer conversations these days?

Doug: I'm having a lot of fun clarifying the difference between simply checking a document and actually verifying a person's identity. Many companies believe that if they scan a driver's license, they're secure. But I always ask, "Okay, that tells you the document is probably real, but how do you really know who's holding it?" That question changes everything. Between the rise of AI-generated fakes, or the simple reality that people lose their wallets, relying on a single document is incredibly fragile. The last thing you want is your top employee stranded and locked out of their accounts because their license is missing.

I move the conversation to a multi-factor approach. We check the document, yes, but then we use biometrics to bind it to the live person in front of the camera, and then we cross-reference that against another trusted signal, like the phone they already use to sign in. It gives you true assurance that the right person is there. More importantly, it provides multiple paths so your employees are never left helpless. It’s about building a resilient system that’s both more secure and more practical for your people.

Bonus question! What’s one piece of advice you’d give to someone just starting to manage these complex sales and deployment cycles?

Doug: Get obsessed with your customer's business, not your product. Understand what keeps their executives up at night, what their biggest operational headaches are, and what their long-term goals are. If you can authentically map your solution to solving those core problems, you stop being a salesperson and start being a strategic partner. Everything else follows from that.

Thanks for the insights, Doug. It’s clear that partnership is the key ingredient to success!

Sure, hackers can bypass MFA, but here’s how to make sure they don’t.

Keywords

PAM, IGA, CyberArk, Palo Alto, identity security, AI, machine identity, cybersecurity, information flows, behavioral analysis

Summary

In this episode of the Analyst Brief Podcast, Simon Moffatt and David Mahdi discuss the significant changes in the cybersecurity landscape, particularly focusing on Privileged Access Management (PAM) and Identity Governance and Administration (IGA). They explore the recent acquisition of CyberArk by Palo Alto, the evolution of identity security, and the convergence of various identity management solutions.

The conversation highlights the importance of information flows, and the need for a mindset shift in the industry to effectively address identity security challenges.

Takeaways

The cybersecurity landscape is rapidly changing due to AI. PAM and IGA are evolving but remain siloed. The acquisition of CyberArk by Palo Alto signifies a shift in identity security. Organizations struggle with integrating disparate identity technologies. Behavioral analysis is crucial for identifying security threats. AI will play a significant role in optimizing identity security. Defensive acquisitions are common in the cybersecurity industry. The future of identity security relies on understanding information flows.

Chapters

00:00 Welcome Back and Industry Changes

02:01 The Evolution of Privileged Access Management (PAM)

10:41 The Convergence of Cybersecurity and Identity

16:13 The Future of Identity Management Platforms

24:23 Understanding Information Flows in Cybersecurity

28:12 The Role of AI in Identity Management

33:42 Navigating Mergers and Acquisitions in Tech

39:50 The Future of Identity Security and AI Integration

CyberScoop reports that the Electronic Privacy Information Center, the League of Women Voters, and five individual plaintiffs filed a lawsuit in D.C. District Court, seeking to immediately stop the Trump administration from expanding the Systematic Alien Verification for Entitlements system into a massive voter and citizenship tracking system.

September 2025 Are markets ready for tokenised stocks’ global impact?

Nasdaq has filed with the SEC to tokenise every listed stock by 2026. If approved, this would be the first time tokenised securities trade on a major U.S. exchange, a milestone that could transform global capital markets. Under the proposal, investors will be able to choose whether to settle their trades in traditional digital form or in tokenised blockchain form.

As, more and more firms are tokenising stocks. The implications are potentially huge:

24/7 trading of tokenised equities Instant settlement Programmable ownership Full shareholder rights, identical to traditional shares

This is a large overhaul of market infrastructure. Sounds great, but the reality is much more complex.

How to tokenise stocks?

Tokenised stocks today can be structured in several ways, including:

Indirect tokenisation: The issuer raises money via the issuance of a financial instrument different from the stocks, typically a debt instrument (e.g. bond/note), and buys the underlying stocks with the raised funds. The tokens may either be the financial instrument itself or represent a claim on that financial instrument. The token does not grant investors direct ownership of the underlying stock. However, it is simple to launch. Direct tokenisation: Stocks are tokenised directly at the stock company level, preserving voting, dividends, and reporting rights. Although this method tends to be more difficult to implement due to legal and infrastructure requirements.

Both structures have their benefits and drawbacks. The real issue, however, is how the tokens are managed post-issuance.

Permissionless vs permissioned tokens

While choosing a structure for tokenised stocks is important, the true success of tokenisation depends on whether the tokens are controlled or free to move, because this determines compliance, investor protection, and ultimately whether the market can scale safely.

Permissionless: Tokens can move freely on-chain after issuance. Token holders gain economic exposure, but not shareholder rights. Secondary market trading is not controlled, creating compliance risks. The legitimate owner of the security is not always clear. Permissioned: Compliance and eligibility are enforced at every stage, embedding rules directly into the token. Crucially, permissioned tokens also guarantee investor safety by making ownership legally visible in the issuer’s register. For issuers, this model also fulfils their legal obligation to know who their investors are at all times. Transfers to non-eligible wallets are blocked, maintaining regulatory safety while preserving trust.

While permissionless tokens may be quicker to launch, they carry significant legal risks, weaken investor trust, and fragment growth. By contrast, permissioned tokens should be considered as the only sustainable approach to tokenising stocks, because they combine compliance, investor protection, and long-term scalability.

The right way forward – compliance at the token level

Nasdaq’s SEC filing shows the path to do this right. Tokenised stocks will only succeed if eligibility and compliance are enforced in both issuance and secondary trading.

That’s where open-source standards like ERC-3643 come in:

Automated compliance baked in: Rules are enforced automatically at the protocol level, not manually after the fact Eligibility checks: Only approved investors can hold the asset, enabling ownership tracking efficiently Controlled transfers: Tokens cannot be sent to non-eligible investors, even in the secondary market Auditability: Every transaction can be monitored in real time, ensuring trust with regulators

This is how tokenised stocks can operate safely at scale, with compliance embedded directly into the digital infrastructure, no matter if it’s through direct or indirect tokenisation. This provides safety at scale, unlocked liquidity, efficiency, and regulatory alignment.

Why this matters now?

Investor demand for tokenised assets is surging. Global banks are exploring issuance, Coinbase has sought approval, and now Nasdaq is moving ahead under the SEC’s umbrella. Tokenisation will be at the core of financial markets.

But shortcuts built on permissionless, freely transferable tokens will only invite regulatory backlash, slowing innovation and preventing the market from scaling.

The future of tokenised shares will be built on:

Carrying full shareholder rights and guaranteeing ownership Automatic, enforced compliance on every trade Integrating directly into existing market infrastructure

That is what true tokenisation means, not synthetic exposure, but embedding the rules of finance into the share itself.

We believe this is the turning point. Nasdaq’s move validates what we’ve been building toward: a global financial system where tokenisation unlocks liquidity, efficiency, and access, not at the expense of compliance, but because of it.

The race is on. The winners won’t be those who move fastest, but those who build markets that are trusted, compliant, and scalable from day one.

Tokeny Spotlight

Annual team building

We head to Valencia for our annual offsite team building. A fantastic time filled with great memories.

Read More

Token2049

Our CEO and Head of Product for Apex Digital Assets, and CBO, head to Singapore for Token2049

Read More

New eBook

Global payments reimagined. Download to learn what’s driving the rapid rise of digital currencies.

Read More

RWA tokenisation report

We are proud to have contributed to the newly released RWA Report published by Venturebloxx.

Read More

SALT Wyoming

Our CCO and Global Head of Digital Assets at Apex Group, Daniel Coheur, discusses Blockchain Onramps at SALT.

Read More

We test SilentData’s privacy

Their technology explores how programmable privacy allows for secure and compliant RWA tokenisation.

Read More Tokeny Events

Token2049 Singapore
October 1st-2nd, 2025 | 🇸🇬 Singapore

Register Now

Digital Assets Week London
October 8th-10th, 2025 | 🇬🇧 United Kingdom

Register Now

ALFI London Conference
October 15th, 2025 | 🇬🇧 United Kingdom

Register Now

RWA Singapore Summit
October 2nd, 2025 | 🇸🇬 Singapore

Register Now

Hedgeweek Funds of the Future US 2025
October 9th, 2025 | 🇺🇸 United States of America

Register Now ERC3643 Association Recap

ERC-3643 is recognized in Animoca Brands Research’s latest report on tokenised real-world assets (RWAs).

The report highlights ERC-3643 as a positive step for permissioned token standards, built to solve the exact compliance and interoperability challenges holding the market back.

Read the story here

Subscribe Newsletter

A monthly newsletter designed to give you an overview of the key developments across the asset tokenization industry.

Previous Newsletter  Oct10 Are markets ready for tokenised stocks’ global impact? September 2025 Are markets ready for tokenised stocks’ global impact? Nasdaq has filed with the SEC to tokenise every listed stock by 2026. If approved,… Sep1 SkyBridge Tokenises $300m Hedge Funds with Tokeny and Apex Group August 2025 SkyBridge Tokenises $300m Hedge Funds with Tokeny and Apex Group Last month, together with Apex Group, we introduced Apex Digital 3.0, the first… Aug1 Apex Digital 3.0 is Live – The Future of Finance Starts Now July 2025 Apex Digital 3.0 is Live – The Future of Finance Starts Now To truly scale tokenisation, we need a global force at the… Jul1 Real Estate Tokenization Takes Off in Dubai June 2025 Real Estate Tokenization Takes Off in Dubai Dubai’s real estate market is breaking records. According to data shared by Property Finder, Dubai recorded…

The post Are markets ready for tokenised stocks’ global impact? appeared first on Tokeny.

Assess your business's AI Agent readiness. Use this checklist to master the unique AI security challenges autonomous agents pose to customer identity and data access.

Most people think of digital identity as a mobile driver’s license or app on their phone. But identity isn’t just a credential, it’s infrastructure. Like roads, broadband, or electricity, digital identity frameworks must be built, governed, and funded as public goods.

Today, the lack of a unified identity system fuels fraud, inefficiency, and distrust.  In 2023, the U.S. recorded 3,205 data breaches affecting 353 million people, and the Federal Trade Commission reported $12.5 billion in fraud losses, much of it rooted in identity theft and benefit scams.

These aren’t isolated incidents but symptoms of fragmentation: every agency and organization maintaining its own version of identity, duplicating effort, increasing breach risk, and eroding public trust.

We argue that identity should serve as public infrastructure: a government-backed framework that lets residents prove who they are securely and privately, across contexts, without unnecessary data collection or centralization. Rather than a single product or app, this framework can represent a durable set of technical and statutory controls built to foster long-term trust, protect privacy, and ensure interoperability and individual control.

From Projects to Public Infrastructure

Governments often launch identity initiatives as short-term projects: a credential pilot, a custom-built app, or a single-agency deployment. While these efforts may deliver immediate results, they rarely provide the interoperability, security, or adoption needed for a sustainable identity ecosystem. Treating digital identity as infrastructure avoids these pitfalls by establishing common rails that multiple programs, agencies, and providers can build upon.

A better approach is to adopt a framework model, where digital identity isn’t defined by a single product or format but by adherence to a shared set of technical and policy requirements. These requirements, such as selective disclosure, minimal data retention, and individual control, can apply across many credential types, from driver’s licenses and professional certifications to benefit eligibility and guardianship documentation.

This enables credentials to be iterated and expanded on thoughtfully: credentials can be introduced one at a time, upgraded as standards evolve, and tailored to specific use cases while maintaining consistency in protections and interoperability.

Enforcing Privacy Through Law and Code

Foundational privacy principles such as consent, data minimization, and unlinkability must be enforced by technology, not just policy documents. Digital identity systems should make privacy the default posture, using features (depending on the type of credential) such as:

Selective disclosure (such as proving “over 21” without showing a birthdate) Hardware-based device binding Cryptographically verifiable digital credentials with offline presentation Avoid architectures that risk exposing user metadata during verification.

By embedding security, privacy, and interoperability directly into the architecture, identity systems move beyond compliance and toward real-world protection for residents. These are not optional features, they are statutory expectations brought to life through secure protocols.

Open Standards, Broad Interoperability

Public infrastructure should allow for vendor choice and competitive markets that foster innovation. That’s why modern identity systems should be built on open, freely implementable standards, such as ISO/IEC 18013-5/7, OpenID for Verifiable Presentations (OID4VP), W3C Verifiable Credentials, and IETF SD-JWTs.

These standards allow credentials to be portable across wallet providers and verifiable in both public and private sector contexts, from airports and financial institutions to universities and healthcare. Multi-format issuance ensures credentials are accepted in the widest range of transactions, without compromising on core privacy requirements.

A clear certification framework covering wallets, issuers, and verifiers can ensure compliance with these standards through independent testing, while maintaining flexibility for providers to innovate. Transparent certification also builds trust and ensures accountability at every layer of the ecosystem.

Governance Leads, Industry Builds

Treating digital identity as infrastructure doesn’t mean the public sector has to (or even should) build everything. It means the public sector must set the rules, defining minimum standards, overseeing compliance, and ensuring vendor neutrality.

Wallet providers, credential issuers, and verifiers can all operate within a certified framework if they meet established criteria for security, privacy, interoperability, and user control. Governments can maintain legal authority and oversight while encouraging healthy private-sector competition and innovation.

This governance-first approach creates a marketplace that respects rights, lowers risk, and is solvent. Agencies retain procurement flexibility, while residents benefit from tools that align with their expectations for usability and safety.

Why This Matters

Digital identity is the entry point to essential services: healthcare, education, housing, employment, and more. If it’s designed poorly, it can become fragmented, invasive, or exclusionary. But if it’s designed as infrastructure with strong governance and enforceable protections, it becomes a foundation for inclusion, trust, and public value.

Well-governed digital identity infrastructure enables systems that are:

Interoperable across jurisdictions and sectors Private by design, not retrofitted later Transparent, with open standards and auditability Resilient, avoiding lock-in and enabling long-term evolution

Most importantly, it is trustworthy for residents, not just functional.

A Foundation for the Future

Public infrastructure requires alignment between law, technology, and market design. With identity, that means enforcing privacy in code, using open standards to drive adoption, and establishing certification programs that ensure accountability through independent validation without stifling innovation.

This is more than a modernization effort. It’s a transformation that ensures digital identity systems can grow, adapt, and serve the public for decades to come.

Ready to Build Trustworthy Digital ID Infrastructure?

SpruceID partners with governments to design and implement privacy-preserving digital identity systems that scale. Contact us to explore how we can help you build standards-aligned, future-ready identity infrastructure grounded in law, enforced by code, and trusted by residents.

Contact Us

About SpruceID: SpruceID is building a future where users control their identity and data across all digital interactions.

A deeper analysis found that all the firewall configurations were compromised, not just 5% of users as first reported.

Amazon Web Services cloud environments have been subjected to attacks by the Crimson Collective hacking operation as part of a data extortion campaign, reports BleepingComputer.

Cybernews reports that Microsoft Teams has been increasingly leveraged by cybercriminals and state-backed threat actors to facilitate illicit cyber activity.

BleepingComputer reports that over 13,800 attack attempts aimed at a critical authentication bypass vulnerability in the Service Finder WordPress theme, tracked as CVE-2025-5947, have been launched since the beginning of August.

Newly emergent Shuyal Stealer malware could pilfer login credentials from 19 different web browsers, including Google Chrome, Microsoft Edge, Opera and Opera GX, Epic, Waterfox, Vivaldi, and Yandex, GBHackers News reports.

Discord has repudiated threat actors' assertions of having pilfered 2.1 million government IDs from the breach of its third-party customer service provider, stating that only about 70,000 users had their government ID photos compromised, as it emphasized its refusal to pay the demanded ransom, BleepingComputer reports.

Cybernews reports that the California Golf Club of San Francisco, an elite golf club catering to Silicon Valley executives and other high-profile clients, had 10 GB of member data allegedly stolen by the Qilin ransomware group.

Thousands of children attending schools and daycare centers across Quebec had their data exposed as a result of vulnerabilities in the widely used student pickup time-coordinating app HopHop, which was not approved by the Quebec Ministry of Education, reports Cybernews.

Legislation strengthening the California Consumer Privacy Act of 2018 by requiring web browsers to provide a simple, universal opt-out tool for consumers who do not want their data sold to third parties has been signed into law by Gov. Gavin Newsom, reports The Record, a news site by cybersecurity firm Recorded Future.

Digital fraud has drained 7.7% of annual revenue on average among companies worldwide, with losses estimated to reach $534 billion over the past 12 months, Infosecurity Magazine reports.

VTEX a global e-commerce platform for over 3,500 online stores, including those of Nestle, Coca-Cola, Sony, Walmart, Mazda, and Samsung has inadvertently leaked the data of six million shoppers, according to Cybernews.

Major online sports betting platform DraftKings has confirmed that fewer than 30 of its customers had their accounts compromised in a string of credential stuffing attacks, reports BleepingComputer.

With the European Union mandating digital wallets by the end of 2026, and Verifiable Credentials offering new, powerful, and cost-effective ways to solve identity fraud and simplify operations, you may be thinking it’s time to embrace decentralized identity and build your own Verifiable Credential system. You’ve got a developer team, they understand security — so it couldn’t be that difficult, right?

By Helen Garneau

It’s tempting to do things yourself. But there’s a reason a professional painter will almost certainly do a better and quicker job at painting your house than you will. And, when you price how much time it would take you, there’s a good chance a professional will probably end up costing you less too.

The same logic applies to building decentralized identity systems with Verifiable Credentials.

If you have a talented team of engineers, it’s easy to think, “we’ve got this.” They understand security, they can code, issuing and verifying a few credentials sounds simple enough.

But once you start digging into credential formats, protocols, interoperability, global standards, regulations, and governance, what seems like a quick project for a few developers quickly becomes a long, complex, and costly effort to build and maintain a secure, standards-compliant system.

How fast “We got this” turns into “Why did we do this?”

Decentralized identity makes data portable and cryptographically verifiable without the need for certificate authorities or centralized data management. Its vehicle is the Verifiable Credential, a way of sealing any kind of information in a digital container so that it cannot be altered and you can be certain of its origin.

If you trust the origin of the credential — say a passport office or a bank — you can trust that the information placed in the credential has not been altered. Verifiable Credentials are held in digital wallet apps and can be shared by the consent of the holder, whether a person or an organization, in privacy-preserving ways.

Verifiable Credentials are most commonly used to create instantly authenticatable versions of trusted documents, such as passports, driver’s licenses, but they can be created and held by devices for secure data sharing, or robots and AI agents, for authentication and permissioned data access.

The point of all this is that it transforms authentication, fraud prevention, privacy, security, and operational efficiency. You are able to remove usernames and passwords, centralized storage and multi-factor authentication and combine authentication and fraud prevention in a seamless, instant process.

A decentralized ecosystem consists of three parts: an issuer that creates and digitally signs the credential, a holder who keeps it in a digital wallet and presents it for authentication and access to resources, and a verifier or relying party that needs to authenticate the information presented for some purpose.

When building an ecosystem for a use case — say systems account access — here’s what you need to consider: There are, presently, three major credential formats, each with differing communications protocols. They’ve got to interoperate with each other and across different digital wallets according to whatever standards you want to align with. Which are you going to pick?

Then, you need to get them into people’s wallets. Which wallet? An existing one or do you need an SDK?

If you want to verify credentials, you should be able to verify thousands — perhaps tens of thousands — simultaneously. How do you do this when mobile devices don’t have fixed IP addresses? How are you going to establish offline verification? And how are you going to establish governance so that participants know who is a trusted issuer of a credential?

This is just a basic implementation — a foundation to build the kind of solutions the market wants. Are you also prepared to then develop integrated payments, integrated biometrics, digital travel credentials, document validation, and identity and delegated authority for AI agents and robots? You better be, because that’s where the market is now at.

There’s a reason Indicio was the first (and still the only) company to launch a complete, off-the-shelf solution for implementing Verifiable Credentials in both the Amazon and Google Cloud Marketplaces: We built a team composed of pioneers and leaders in decentralized identity, engineers and developers deeply engaged with the open source codebases and communities that have shaped this technology. They live and breathe this stuff every day. And even so, it still took years to build an interoperable, multi-credential, multi-protocol, system that can scale to country-level deployments.

If your team isn’t already familiar with the open-source codebases and the evolving international specifications and standards, how are they going to deliver in a realistic time frame at an acceptable cost?

The probability that your team is going to do all that we did in six months is… low.

The likelihood that they will end up blowing through a lot of your budget attempting to do this is… high.

Interoperability — everyone expects it

No one is going to buy a proprietary, siloed system. Decentralized identity is an architecture for data sharing and integrating markets into functioning ecosystems; if your solution can’t do this, can’t interoperate or scale, it’s missing out on key features that drive business growth. Sure, you may want to start by securing your SSO with a Verifiable Credential, but why limit the power of verification?

For example, one of the key failures of the mobile driver’s license (m/DL) in the U.S. is that so many implementations failed to make verification open to other parties. Think of all the ways an m/DL could be used to prove age or identity. A digital identity that’s locked into a narrow use case and proprietary verification is a wasted opportunity not least because verification can be monetized (Indicio’s m/DL is easily verifiable anywhere).

To make a system work with the rest of the world, it has to speak the relevant languages. That means following multiple standards and protocols that define how credentials are created, stored, and exchanged and, depending on what your needs are, for whatever specific credential workflow you want to deploy, keeping up with some or all of the following:

W3C Verifiable Credential Data Model (VCDM) — defines how credentials are structured and signed.

ISO/IEC 18013-5 and ICAO DTC — govern mobile driver’s licenses (mDL) and Digital Travel Credentials, ensuring global interoperability across borders and transport systems.

DIDComm and DID methods — specify how secure, peer-to-peer communication and decentralized identifiers work.

OpenID for Verifiable Credentials (OID4VC and OID4VP) — bridges decentralized identity with mainstream authentication systems like OAuth and OpenID Connect.

Each of these comes with its own working groups, test suites, and compliance updates. Building your own system means keeping pace with all of them and making sure your implementation doesn’t break every time a standard changes.

With off-the-shelf, you implement in days

Indicio Proven® eliminates the DIY risk. You have a way to start implementing a POC in days, pilot in weeks, launch in months. We’ve spent years doing the heavy lifting so you don’t have to. It’s the mature, field-tested Verifiable Credential infrastructure that governments, airports, and financial institutions already use.

Instead of building from scratch, you have everything you need to start building a solution, a product, or a service so your team is free to focus on things that make you money.

Indicio Proven can already handle country-level deployments and multi-credential workflows. It has been DPIA’d for GDPR. It comes with document validation and biometric authentication, a white-label digital wallet if you need one, a mobile SDK to add Verifiable Credentials to your apps. We’ve already mastered:

Multiple credential formats (AnonCreds, SD-JWT VC, JSON-LD, mdoc/mDL) DIDComm and OID4VC/OID4VP communications protocols Digital Travel Credentials aligned with ICAO DTC-1 and DTC-2 specifications. Decentralized ecosystem governance Hosting on premise, in the cloud or as a SaaS product. A global, enterprise-grade blockchain-based distributed ledger for anchoring credentials Certified training in every aspect of decentralized identity Support packages Continuous updates

In one package, you get everything you need to build, deploy, and stay current with evolving standards, so your team doesn’t have to chase every update.

Deploy with confidence

There’s no shame in DIY, but for Verifiable Credentials, the smarter move is to build on top of something that already works. Indicio does the heavy lifting so you can focus on what matters: using trusted digital identity to deliver value to your users. A Verifiable Credential system should give you trust, not technical debt.

In short: don’t reinvent the tech. Build with what’s already proven.

Want to do it right the first time? Let’s talk.

The post Your authentication dilemma: DIY or off-the-shelf decentralized identity? appeared first on Indicio.

In a recent client call, we were asked whether our platform could help a local government issue digital IDs. 

To answer that, Richard Esplin (Head of Product) put together a live demo.

Instead of complex architectures or long timelines, he showed how a city could issue a digital residency credential and use it instantly across departments. From getting a library card to scheduling trash pickup.

The front end for the proof-of-concept was spun up in an afternoon with an AI code generator. 

Behind the scenes, we handled verifiable credential issuance, verification, selective disclosure, revocation, and ecosystem governance, proving that governments can move from paper processes to reusable, privacy-preserving digital IDs in days, not months.

The UK's Online Safety Act triggered a staggering 1,800% surge in VPN signups within days of implementation.

The UK’s Online Safety Act was introduced to make the internet “safer,” especially for children. It forces websites and platforms to implement strict age verification measures for adult and “harmful” content, often requiring users to upload government IDs, credit cards, or even biometric scans.

While the goal is protection, the method feels intrusive. 

Suddenly, every UK citizen is being asked to share sensitive identity data with third-party verification companies just to access certain sites.

The public response was immediate. 

Within days of implementation, the UK saw a staggering 1,800% surge in VPN signups. 

ProtonVPN jumped to the #1 app in the UK App Store. NordVPN reported a 1,000% surge. In fact, four of the top five free iOS apps in the UK were VPNs. 

Millions of people literally paid to preserve their privacy rather than comply.

This backlash reveals a fundamental flaw in how age verification was implemented.

People are rejecting what they perceive to be privacy-invasive ID uploads. They don’t want to hand over passports, driver’s licenses, or facial scans just to browse.

Can we blame them?

The problem isn’t age verification itself. The problem is the method, which pushes people to circumvent the rules with VPNs or even fake data.

But here’s the thing: we already have better options.

Government-issued digital IDs already exist. Zero-knowledge proofs let you prove you’re 18+ without revealing who you are. Verifiable credentials combine reliability (government-backed trust) with privacy by design.

With this model, the website never sees your personal data. 

The check is still secure, government-backed, and reliable, without creating surveillance or new honeypots of sensitive data.

The VPN surge is proof that people value their digital privacy so much that they’ll pay for it.

If governments want compliance and safety, they need to meet people where they are: with solutions that respect privacy as much as protection.

The UK’s privacy backlash demonstrates exactly why verifiable ID credentials are the way forward. 

They can resolve public resistance while maintaining both effective age checks and digital rights.

In our recent live podcast, Richard Esplin (Dock Labs) spoke with Andrew Hughes (VP of Global Standards, FaceTec) and Ryan Williams (Program Manager of Digital Credentialing, AAMVA) about the rollout of mobile driver’s licenses (mDLs) and what comes next.

One idea stood out: derived credentials.

mDLs are powerful because they bring government-issued identity into a digital format. 

But in practice, most verifiers don’t need everything on your driver’s license. 

A student bookstore doesn’t need your address, it only needs to know that you’re enrolled.

That’s where derived credentials come in. 

They allow you to take verified data from a root credential like an mDL and create purpose-specific credentials:

A student ID for campus services. An employee badge for workplace access. A travel pass or loyalty credential.

Andrew put it simply: if you don’t need to use the original credential with everything loaded into it, don’t. 

Ryan added that the real benefit is eliminating unnecessary personal data entirely, only passing on what’s relevant for the transaction.

Derived credentials also make it possible to combine data from multiple credentials into one, enabling new use cases. 

For example, a travel credential could draw on both a government-issued ID and a loyalty program credential, giving the verifier exactly what they need in a single, streamlined interaction.

This approach flips the model of identity sharing. 

Instead of over-exposing sensitive details, derived credentials enable “less is more” identity verification: stronger assurance for the verifier, greater privacy for the user.

Looking ahead, Andrew revealed that the ISO 18013 Edition 2 will introduce support for revocation and zero-knowledge proofs, enhancements that will make derived credentials even more practical and privacy-preserving.

Bottom line: mDLs are an important foundation, but the everyday future of digital ID lies in derived credentials.

The Register reports that two 17-year-olds were arrested by London's Metropolitan Police on suspicion of computer misuse and blackmail after a ransomware attack on a London-based preschool chain.

Learn how Auth0 Token Vault uses OAuth 2.0 Token Exchange to provide secure, delegated access, letting AI agents act on a user's behalf without handling refresh tokens.

Innovations in artificial intelligence (AI) today are accelerating at lightning speed, impacting an ever-widening range of industries and sectors including tech, finance, medicine - with focus on leveraging AI tools to drive efficiencies, enhance decision-making, and improve customer experience. 

Thales and StandardAero’s StableLight™ Autopilot chosen by leading helicopter operator Heli Austria prezly Thu, 10/09/2025 - 11:00 Civil Aviation Austria

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 09 Oct 2025 Heli Austria selects the StableLight 4-Axis Autopilot from for its single-engine H125 helicopter Next-gen safety & performance: cutting pilot workload and boosting mission capability Proven FAA-certified system now entering EASA validation for European operators

Thales and StandardAero are pleased to announce the StableLight 4-Axis Autopilot system has been selected by Heli Austria, a leading European helicopter operator. The system is currently being installed on one of Heli Austria’s H125 helicopters at their facility in Sankt Johann im Pongau, Salzburg, Austria.

Based on Thales’s Compact Autopilot System, the StableLight 4-Axis Autopilot system combines several robust features into a lightweight system ideally suited for light category rotorcraft. ​ The system transforms the flight control experience of the helicopter with its stability augmentation. Adding stabilized climb flight attitude recovery, auto hover, and a wide range of other sophisticated features, significantly decreases pilot workload. This enhances mission capability and can help to reduce risks in critical flight phases and adverse conditions such as Inadvertent entry into Instrument Meteorological Conditions (IIMC). StableLight has a Supplemental Type Certificate (STC) from the US Federal Aviation Administration (FAA).

“Operational and pilot safety are very important to Heli Austria. ​ We have been eagerly awaiting the opportunity to be the European launch customer of this proven product. The added safety features and reliability is a welcomed advantage to our pilots.” Roy Knaus, CEO, Heli Austria.

“At Thales, integrating cutting-edge technologies to deliver safety and trust is fundamental to who we are. By uniting Thales’s advanced expertise with StandardAero’s deep industry knowledge, we harness a powerful combination to provide Heli Austria’s pilots with the autopilot solution they have eagerly awaited.” Florent Chauvancy, Vice President Flight Avionics Activities, Thales.

“We are thrilled to be working with Heli Austria, a renowned operator in the European market. The adoption of our StableLight autopilot system demonstrates their commitment to safety and innovation. Once certified by EASA, European H125 operators will be able to reach a new level of safety and efficiency of helicopter operations with the StableLight system.” ​ Andrew Park, General Manager, StandardAero.

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion.The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies. Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.

About StandardAero

StandardAero is a leading independent pure-play provider of aerospace engine aftermarket services for fixed- and rotary-wing aircraft, serving the commercial, military and business aviation end markets. StandardAero provides a comprehensive suite of critical, value-added aftermarket solutions, including engine maintenance, repair and overhaul, engine component repair, on-wing and field service support, asset management and engineering solutions. StandardAero is an NYSE listed company, under the symbol SARO. For more information about StandardAero, go to www.standardaero.com.

View PDF market_segment : Civil Aviation ; countries : Europe > Austria https://thales-group.prezly.com/thales-and-standardaeros-stablelight-autopilot-chosen-by-leading-helicopter-operator-heli-austria thales-and-standardaeros-stablelighttm-autopilot-chosen-leading-helicopter-operator-heli-austria On Thales and StandardAero’s StableLight™ Autopilot chosen by leading helicopter operator Heli Austria

$OCEAN can be de-pegged and re-listed on exchanges

Singapore, 9 October 2025

Effective immediately, Ocean Protocol Foundation has withdrawn its designated directors and resigned as a member from the Superintelligence Alliance (Singapore) Ltd, aka the “ASI Alliance”. The ASI Alliance was founded on voluntary association and collaboration to promote decentralized AI through a token merger.

Ocean has worked closely with the other members of the Alliance to seek technology integration, joint podcasts and run community events such as the Superintelligence Summit and ETHGlobal NYC hackathon in the past year.

Moving forward, funding for future Ocean development efforts is fully secured. A portion of profits from spin-outs of Ocean derived-technologies will be used to buyback and burn $OCEAN, offering a permanent and continual supply reduction of the $OCEAN supply.

Since 7/2024, 81% of the $OCEAN token supply has been converted into $FET, yet there are still 37,334 $OCEAN token holders representing 270 million $OCEAN, that have not yet converted to $FET on the existing $OCEAN token contract (0x967da … b9F48).

As independent economic actors, former $OCEAN holders can fully decide to continue to hold $FET or not.

At the time of this announcement, the token bridge, fully managed and controlled by Fetch.ai, remains open for $OCEAN holders to convert to $FET at the rate of 0.433226 $FET/$OCEAN.

Any exchange that has de-listed $OCEAN may assess whether they would like to re-list the $OCEAN token. Acquirors can currently exchange for $OCEAN on Coinbase, Kraken, UpBit, Binance US, Uniswap and SushiSwap.

Community questions to be sent to https://t.me/OceanProtocol_Community.

Press questions can be sent to inquiries@oceanprotocol.com.

Ocean Protocol Foundation withdraws from the Artificial Superintelligence Alliance was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

Predictoor DF158 rewards available. DF159 runs October 9th — October 16th, 2025 1. Overview

Data Farming (DF) is an incentives program initiated by ASI Alliance member, Ocean Protocol. In DF, you can earn OCEAN rewards by making predictions via ASI Predictoor.

Data Farming Round 158 (DF158) has completed.

DF159 is live today, October 9th. It concludes on October 16th. For this DF round, Predictoor DF has 3,750 OCEAN rewards and 20,000 ROSE rewards.

2. DF structure

The reward structure for DF159 is comprised solely of Predictoor DF rewards.

Predictoor DF: Actively predict crypto prices by submitting a price prediction and staking OCEAN to slash competitors and earn.

3. How to Earn Rewards, and Claim Them

Predictoor DF: To earn: submit accurate predictions via Predictoor Bots and stake OCEAN to slash incorrect Predictoors. To claim OCEAN rewards: run the Predictoor $OCEAN payout script, linked from Predictoor DF user guide in Ocean docs. To claim ROSE rewards: see instructions in Predictoor DF user guide in Ocean docs.

4. Specific Parameters for DF159

Budget. Predictoor DF: 3.75K OCEAN + 20K ROSE

Networks. Predictoor DF applies to activity on Oasis Sapphire. Here is more information about Ocean deployments to networks.

Predictoor DF rewards are calculated as follows:

First, DF Buyer agent purchases Predictoor feeds using OCEAN throughout the week to evenly distribute these rewards. Then, ROSE is distributed at the end of the week to active Predictoors that have been claiming their rewards.

Expect further evolution in DF: adding new streams and budget adjustments among streams.

Updates are always announced at the beginning of a round, if not sooner.

About Ocean, DF and ASI Predictoor

Ocean Protocol was founded to level the playing field for AI and data. Ocean tools enable people to privately & securely publish, exchange, and consume data. Follow Ocean on Twitter or TG, and chat in Discord. Ocean is part of the Artificial Superintelligence Alliance.

In Predictoor, people run AI-powered prediction bots or trading bots on crypto price feeds to earn $. Follow Predictoor on Twitter.

DF158 Completes and DF159 Launches was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

How Fastly turned a shelved Varnish idea into 25% fewer memory writes and real system-wide gains.

Published by Joey Capper (Directory of Engineering at Elliptic) in partnership with AWS.

Comprehensive user data deletion is the new security frontier — critical for trust, AI, and compliance.

The post Building Trust in Agentic Commerce Demo Day appeared first on Liminal.co.

Would you let an AI agent spend your company’s quarterly budget, no questions asked? Most leaders I talk to aren’t there yet. Our research shows that only 8% of organizations are using AI agents in the long term, and the gap isn’t due to a lack of awareness. It’s trust.

If agentic AI is going to matter in e-commerce, we need guardrails that make it safe, compliant, and worth the operational risk. That is where authentication, authorization, and verification come in. Think identity, boundaries, and proof. Until teams can check those boxes with confidence, adoption will stall.

What is an AI agent, and why does it matter in e-commerce

At its simplest, an AI agent is software that can act on instructions without waiting for every step of human input. Instead of a static chatbot or recommendation engine, an agent can take context, make a decision, and carry out an action.

In e-commerce, that could mean:

Verifying a buyer’s identity before an agent executes a purchase on their behalf Allowing an agent to issue refunds up to a set limit, but requiring human approval beyond that threshold Confirming that an AI-driven order or promotion matches both customer intent and compliance rules before it goes live

The upside is clear: faster processes, lower manual overhead, and customer experiences that feel effortless. But the risk is just as clear. If an agent acts under the wrong identity, oversteps its boundaries, or produces outcomes that don’t match user intent, the impact is immediately evident in increased fraud losses, compliance failures, or customer churn.

That’s why the industry is focusing on three pillars: authentication, authorization, and verification. Without them, agentic commerce cannot scale.

The adoption gap

Analysts project autonomous agents will grow to $70B+ by 2030. Buyers want speed, automation, and scale, but customers are not fully on board. In fact, only 24% of consumers say they are comfortable letting AI complete a purchase on their own.

That consumer hesitation is the critical signal. Ship agentic commerce without shipping trust, and you don’t just risk adoption, you risk chargebacks, brand erosion, and an internal rollback before your pilot even scales.

What’s broken today

Three realities keep coming up in my conversations with product, fraud, and risk leaders:

Attack surface expansion. Synthetic identity and deepfakes raise the baseline risk. 71% of organizations say they lack the AI/ML depth to defend against these tactics. Confidence is slipping. Trust in fully autonomous agents dropped from 43% to 27% in one year, even among tech-forward orgs. Hype hurts. A meaningful share of agent projects will get scrapped by 2027 because teams cannot tie them to real value or reliable controls.

The regulatory lens makes this sharper. Under the new EU AI Act, autonomous systems are often treated as high-risk, requiring transparency, human oversight, and auditability. In the U.S., proposals like the Algorithmic Accountability Act and state laws such as the Colorado AI Act point in the same direction—demanding explainability, bias testing, and risk assessments. For buyers, that means security measures are not only best practice but a growing compliance requirement.

When I see this pattern, I look for the missing scaffolding. It is almost always the same three blanks: who is the agent, what can it do, and did it do the right thing.

The guardrails that matter

If you are evaluating solutions, anchor on these three categories. This is the difference between a flashy demo and something you can put in production.

Authentication

Prove the agent’s identity before you let it act. That means credentials for agents, not just users. It means attestation, issuance, rotation, and revocation. It means non-repudiation, so you can tie a transaction to a specific agent and key.

 What to look for:

strong, verifiable agent identities and credentials support for attestation, key management, rotation, and kill switches logs that let you prove who initiated what, and when
Authorization

Set boundaries that are understood by both machines and auditors. Map policies to budgets, scopes, merchants, SKUs, and risk thresholds. Keep it explainable so a human can reason about the blast radius.

What to look for:

policy engines that accommodate granular scopes and spend limits runtime constraints, approvals, and step-up controls simulation and sandboxes to test policies before they go live
Verification

Trust but verify. Confirm that outcomes align to user intent, compliance, and business rules. You need evidence that holds up in a post-incident review.

Verification isn’t just operational hygiene. Under privacy rules like GDPR Article 22, individuals have a right to safeguards when automated systems make decisions about them. That means the ability to explain, evidence, and roll back agent actions is not optional.

What to look for:

transparent audit trails and readable explanations outcome verification against explicit user directives real-time anomaly detection and rollback paths

If a vendor cannot demonstrate these three pillars working together, you are buying a future incident.

Real-world examples today

Real deployments are still early, but they show what’s possible when trust is built in.

ChatGPT Instant Checkout marks one of the first large-scale examples of agentic commerce in production. Powered by the open-source Agentic Commerce Protocol, co-developed with Stripe, it enables users in the U.S. to buy directly from Etsy sellers in chat, with Shopify merchants like Glossier, SKIMS, and Vuori coming next. The article affirms each purchase is authenticated, authorized, and verified through secure payment tokens and explicit user confirmation—demonstrating how agentic AI can act safely within clear trust boundaries. Konvo AI automates ~65% of customer queries for European retailers and converts ~8% of those into purchases, using agents that can both interact with customers and resolve logistics issues. Visa Intelligent Commerce for Agents is building APIs that let AI agents make purchases using tokenized credentials and strong authentication — showing how payment-grade security can extend to autonomous actions. Amazon Bedrock AgentCore Identity provides identity, access control, and credential vaulting for AI agents, giving enterprises the tools to authenticate and authorize agent actions at scale Agent Commerce Kit (ACK-ID) demonstrates how one agent can verify the identity and ownership of another before sensitive interactions, laying the groundwork for peer-to-peer trust in agentic commerce.

These aren’t fully autonomous across all commerce workflows, but they demonstrate that agentic AI can deliver value when authentication, authorization, and verification are in place.

What good looks like in practice

Buyers ask for a checklist. I prefer evaluation cues you can test in a live environment:

Accuracy and drift. Does the system maintain performance as the catalog, promotions, and fraud patterns shift? Latency and UX. Do the controls keep decisions fast enough for checkout and service flows? Integration reality. Can this plug into your identity, payments, and risk stack without six months of glue code? Explainability. When an agent takes an action, can a product manager and a compliance lead both understand why? Recourse. If something goes wrong, what can you unwind, how quickly can you roll it back, and what evidence exists to explain the decision to auditors, customers, or regulators?

The strongest teams will treat agent actions like high-risk API calls. Every action is authenticated, every scope is authorized, and every outcome is verified. The tooling makes that visible.

Why this matters right now

It is tempting to wait. The reality is that agentic workflows are already creeping into back-office operations, customer onboarding, support, and payments. Early movers who get trust right will bank the upside: lower manual effort, faster cycle time, and a margin story that survives scrutiny.

The inverse is also true. Ship without safeguards, and you’ll spend the next quarter explaining rollback plans and chargeback spikes. Customers won’t give you the benefit of the doubt. Neither will your CFO.

A buyer’s short list

If you are mapping pilots for Q4 and Q1 2026, here’s a simple way to keep the process grounded:

define the jobs to be done write the rules first simulate and stage measure what matters keep humans in the loop regulatory readiness. Confirm vendors can meet requirements for explainability, audit logs, and human oversight under privacy rules. The road ahead

Agentic commerce is not a future bet. It is a present decision about trust. The winners will separate signal from noise, invest in authentication, authorization, and verification, and scale only when those pillars are real.

At Liminal, we track the vendors and patterns shaping this shift. If you want a deeper dive into how teams are solving these challenges today, we’re bringing together nine providers for a live look at the authentication, authorization, and verification layers behind agentic AI. No pitches, just real solutions built to scale safely.

📅 Join us at Liminal Demo Day: Agentic AI in E-Commerce on October 22 at 9:30 AM ET.

My take: The winners won’t be the first to launch AI agents. They’ll be the first to prove their agents can be trusted at scale.

The post Building Trust in Agentic Commerce appeared first on Liminal.co.

Learn how to improve refresh token security. Explore how to implement advanced token misuse and hijacking detection rules using the Auth0 Detection Catalog.

AI adoption in AppSec is soaring, yet oversight lags. Explore the paradox of trust vs. risk, false positives, and the future of AI in application security.

Identity theft is one of the fastest-growing financial crimes worldwide, and consumers are more aware of the risks than ever before. But in an increasingly competitive market, offering “basic” identity theft insurance is no longer enough. To stand out, insurers need to think beyond the minimum by focusing on product innovation, customer experience, and trust. 

Below, we explore six powerful ways insurers can differentiate their identity theft insurance offerings.  

1. Innovate with product features & coverage  

Most identity theft insurance policies cover financial losses and restoration costs, but few go beyond reactive measures to prevent identity theft from occurring. To gain a competitive edge, insurers can expand coverage to offer proactive identity protection solutions, such as:  

Alternative phone numbers and emails to keep customer communications private and reduce phishing risks.  A password manager to help policyholders secure accounts and prevent credential-based account takeovers.  VPN for private browsing to protect sensitive activity on public Wi-Fi and stop data interception.   Virtual cards that protect payment details and shield credit card numbers from fraudsters.  Real-time breach alerts so customers can take immediate action when their data is compromised.  Personal data removal tools to wipe sensitive information from people-search sites and reduce exposure.  A privacy-first browser with ad and tracker blocking to prevent data harvesting and malicious tracking. 

By proactively covering these risks and offering early detection, insurers not only reduce claims costs but also create meaningful value for customers. 

2. Provide strong restoration & case management 

Customers are often overwhelmed and unsure what to do next when their identity is stolen. Insurers can become their most trusted ally by offering: 

A dedicated case manager who works with them from incident to resolution.  A restoration kit with step-by-step instructions, pre-filled forms, and key contacts.  24/7 access to a helpline for guidance and reassurance. 

A study from the University of Edinburgh shows that case management can reduce the cost burden of an incident by up to 90%. It also boosts customer satisfaction and loyalty, which is a critical differentiator in a market where switching providers is easy. 

3. Build proactive prevention & education programs  

Most consumers only think about identity protection after an incident occurs. Insurers can flip this dynamic by helping customers stay ahead of threats. 

Ideas include:  

Regular scam alerts and phishing education campaigns.   Tools for identity monitoring, breach notifications, and credit report access.   Dashboards that visualize a customer’s digital exposure, allowing them to see their risk level.   Ongoing educational content such as webinars, how-to guides, and FAQs. 

Short, targeted online fraud education lowers the risk of falling for scams by roughly 42–44% immediately after training. This finding is based on a study that used a 3-minute video or short text intervention with 2,000 U.S. adults. 

4. Offer flexible pricing & bundling options

Flexibility is key to reaching a broader customer base. Instead of a one-size-fits-all product, insurers can:  

Offer tiered plans (basic, mid, premium) with incremental features.  Bundle identity theft insurance with homeowners, renters, etc.  Provide family plans that protect multiple household members.   

This strategy serves both budget-conscious and premium segments. 

5. Double down on customer experience 

Trust is one of the most important factors consumers consider when buying identity theft insurance. Insurers can build confidence by:   

Using clear, jargon-free language in policy documents.    Responding quickly and resolving cases smoothly.    Displaying trust signals, such as third-party audits, security certifications, and privacy commitments.    Publishing reviews, testimonials, and case studies that show real results. 

A better experience leads to higher Net Promoter Scores (NPS), lower churn rates, and a long-term competitive advantage.   

6. Leverage partnerships

Working with technology partners can enhance insurers’ offerings without straining internal resources. Here are some examples of what partners can do:   

Custom-branded dashboards and mobile apps that seamlessly integrate into your existing customer experience, keeping your brand front and center.    Privacy status at a glance, indicating to customers whether their information has been found in data breaches.   Management of alternative phone numbers and emails, allowing customers to create, update, or retire these directly in the portal. 

By offering these features through a white-labeled experience, insurers provide customers with daily, visible value while partners, like Anonyome Labs, handles the privacy technology behind the scenes. 

Outside of white-label opportunities, strategic partnerships and endorsements also strengthen offerings. Collaborations with credit bureaus, cybersecurity firms, and privacy organizations expand capabilities and build credibility. 

Powering the next generation of identity theft insurance  

The future of identity theft insurance is proactive, not reactive. Insurers who move beyond basic reimbursement to offer daily-use privacy and security tools will lead the industry in trust, engagement, and profitability. Anonyome Labs makes this shift seamless with a fully white-labeled Digital Identity Protection suite that includes alternative phone numbers and emails, password managers, VPNs, virtual cards, breach alerts, and tools for removing personal data. 

By offering these proactive protections, you provide customers with peace of mind, prevent costly fraud incidents before they occur, and unlock new revenue opportunities through subscription-based services. 

By partnering with Anonyome Labs, you can transform identity theft insurance into a daily value driver, positioning your company as a market leader in proactive protection. 

Learn more by getting a demo of our Digital Identity Protection suite today! 

The post 6 Ways Insurers Can Differentiate Identity Theft Insurance   appeared first on Anonyome Labs.

What is Decentralized Identity?

Most of us never think about identity online. We type in a username, reuse a password, or click “Log in with Google” without a second thought. Identity, in the digital world, has been designed for convenience. But behind that convenience lies a hidden cost: surveillance, lock-in, and a system where we don’t really own the data that defines us.

Digital identity today is built for convenience, not for people.

Decentralized identity is a way of proving who you are without relying on a single company or government database to hold all the power. Instead of logging in with Google or handing over a photocopy of your driver’s license, you receive digital verifiable credentials, digital versions of IDs, diplomas, or licenses, directly from trusted issuers like DMVs, universities, or employers. You store these credentials securely in your own digital wallet and decide when, where, and how to share them. Each credential is cryptographically signed, so a verifier can instantly confirm its authenticity without needing to contact the issuer. The result is an identity model that’s portable, privacy-preserving, and designed to give control back to the individual rather than intermediaries.

Decentralized identity means you own and control your credentials, like IDs or diplomas, stored in your wallet, not in someone else’s database.

In this series, we’ll explore why decentralized identity matters, how policymakers are responding, and the technology making it possible. But before diving into policy debates or technical standards, it’s worth starting with the foundations: why identity matters at all, and what it means to build a freer digital world around it.

From Borrowed Logins to Borrowed Autonomy

The internet we know today was built on borrowed identity. Early online gaming systems issued usernames, turning every move into a logged action inside a closed sandbox. Social media platforms went further, normalizing surveillance as the price of connection and building entire economies on behavioral data. Even in industries like healthcare or financial services, “identity” was usually just whatever proprietary account a platform would let you open, and then keep hostage.

Each step offered convenience, but at the cost of autonomy. Accounts could be suspended. Data could be resold. Trust was intermediated by companies whose incentives rarely aligned with their users. The result was an internet where identity was an asset to be monetized, not a right to be owned.

On today’s internet, identity is something you rent, not something you own.

Decentralized identity represents a chance to reverse that arc. Instead of treating identity as something you rent, it becomes something you carry. Instead of asking permission from platforms, platforms must ask permission from you.

Why Identity Is a Pillar of Free Societies

This isn’t just a technical argument - it’s a philosophical and economic one. Identity is at the center of how societies function.

Economists have long warned of the dangers of concentrated power. Adam Smith argued that monopolies distort markets. Milton Friedman cautioned against regulatory capture. Friedrich Hayek showed that dispersed knowledge, not central planning, leads to better decisions. Ronald Coase explained how lowering transaction costs opens new forms of cooperation.

Philosophers, too, placed identity at the heart of freedom. John Locke’s principle of self-ownership and John Stuart Mill’s defense of liberty both emphasize that individuals must control what they disclose, limited only by the harm it might cause others.

Decentralized identity operationalizes these ideas for the digital era. By distributing trust, it reduces dependency on monopolistic platforms. By lowering the cost of verification, it unlocks new forms of commerce. By centering autonomy, it ensures liberty is preserved even as interactions move online.

The Costs of Getting It Wrong

American consumers and institutions are losing more money than ever to fraud and cybercrime. In 2024 alone, the FBI’s Internet Crime Complaint Center (IC3) reported that scammers stole a record $16.6 billion, a stark 33% increase from the previous year. Meanwhile, the FTC reports that consumers lost over $12.5 billion to fraud in 2024, a 25% rise compared to 2023.

On the organizational side, data breach costs are soaring. IBM’s 2025 Cost of a Data Breach Report shows that the average cost of a breach in the U.S. has reached a record $10.22 million, driven by higher remediation expenses, regulatory penalties, and deepening complexity of attacks  .

Identity theft has become one of the fastest-growing crimes worldwide. Fake accounts drain social programs. Fraudulent applications weigh down financial institutions. Businesses lose customers, governments lose trust, and people lose confidence that digital systems are designed with their interests in mind.

The Role of AI: Threat and Catalyst

As artificial intelligence tools advance, they’re empowering fraudsters with tools that make identity scams faster, more automated, and more believable. According to a Federal Reserve–affiliated analysis, synthetic identity fraud, where criminals stitch together real and fake information to fabricate identities, reached a staggering $35 billion in losses in 2023. These figures highlight the increasing risk posed by deepfakes and AI-generated personas in undermining financial systems and consumer trust.

And at the frontline of consumer protection, the Financial Crimes Enforcement Network (FinCEN) has warned that criminals are increasingly using generative AI to create deepfake videos, synthetic documents, and realistic audio to bypass identity checks, evade fraud detection systems, and exploit financial institutions at scale.

AI doesn’t just make fraud easier—it makes strong identity more urgent.

As a result, AI looms over every digital identity conversation. On one side, it makes fraud easier: synthetic faces, forged documents, and bots capable of impersonating humans at scale. On the other, it makes strong identity more urgent and more possible.

Digital Credentials: The Building Blocks of Trust

That’s why the solution isn’t more passwords, scans, or one-off fixes - it’s a new foundation built on verifiable digital credentials. These are cryptographically signed attestations of fact - your age, your license status, your professional certification - that can be presented and verified digitally.

Unlike static PDFs or scans, digital credentials are tamper-proof. They can’t be forged or altered without detection. They’re also user-controlled: you decide when, where, and how to share them. They also support selective disclosure: you can prove you’re over 21 without sharing your exact birthdate, or prove your address is in a certain state without exposing the full line of your home address.

Verifiable digital credentials are tamper-proof, portable, and under the user’s control—an identity model built for trust.

Decentralized identity acts like an “immune system” for AI. By binding credentials to real people and organizations, it distinguishes between synthetic actors and verified entities. It also makes possible a future where AI agents can act on your behalf - booking travel, filling out forms, negotiating contracts - while remaining revocable and accountable to you.

Built on open standards, digital credentials are globally interoperable. Whether issued by a state DMV, a university, or an employer, they can be combined in a wallet and presented across contexts. For the first time, people can carry their identity across borders and sectors without relying on a single gatekeeper.

From Pilots to Infrastructure

Decentralized identity isn’t just theory - it’s already being deployed.

In California, the DMV Wallet has issued more than two million mobile driver’s licenses in under 18 months, alongside blockchain-backed vehicle titles for over 30 million cars. Utah has created a statewide framework for verifiable credentials, with privacy-first principles written directly into law. SB 260 prohibits forced phone handovers, bans tracking and profiling, and mandates that physical IDs remain an option . At the federal level, the U.S. Department of Homeland Security is piloting verifiable digital credentials for immigration, while NIST’s NCCoE has convened banks, state agencies, and technology providers, including SpruceID, to define standards . Over 250 TSA checkpoints already accept mobile IDs from seventeen states, and adoption is expected to double by 2026 .

These examples show that decentralized identity is moving from pilot projects to infrastructure, just as HTTPS went from niche to invisible plumbing for the web.

Why It Matters Now

We are at a crossroads. On one side, centralized systems continue to create single points of failure - massive databases waiting to be breached, platforms incentivized to surveil, and users with no say in the process. On the other, decentralized identity offers resilience, interoperability, and empowerment.

For governments, it reduces fraud and strengthens democratic resilience. For businesses, it lowers compliance costs and builds trust. For individuals, it restores autonomy and privacy.

This isn’t just a new login model. It’s the foundation for digital trust in the 21st century - the bedrock upon which free societies and vibrant economies can thrive.

This article is part of SpruceID’s series on the future of digital identity in America.

Subscribe to be notified when we publish the next installment.

Subscribe Email sent! Check your inbox to complete your signup.

No spam. Unsubscribe anytime.

South Carolina-based Rainwalk Pet Insurance had 158 GB of data belonging to customers and their pets leaked by an unsecured database, according to HackRead.

Newly emergent Radiant ransomware gang, which was behind the compromise of the global nursery chain Kido, has admitted to having targeted an unnamed Minnesota hospital, The Register reports.

SecurityWeek reports that Florida-based radiology practice Doctors Imaging Group had information from more than 171,000 individuals stolen following a November data breach.

French prosecutors have launched an investigation into Apple over alleged privacy violations tied to its voice assistant Siri, following a complaint by the human rights group Ligue des droits de l'Homme, according to Politico Europe.

How Hardware-Agnostic Authentication Solves Fraud and Revenue Leakage

The public transit sector is undergoing a significant digital transformation, consolidating operations under the vision of Mobility-as-a-Service (MaaS). This shift promises passenger convenience through integrated mobile ticketing and Account-Based Ticketing (ABT) systems, but it simultaneously introduces a critical vulnerability: the rising threat of mobile fraud and revenue leakage.

For transit operators, the stakes are substantial. Revenue losses from fare evasion and ticket forgery, ranging from simple misuse of paper tickets to sophisticated man-in-the-middle attacks, can significantly impact the sustainability of MaaS and the ability to reinvest in services.

Traditional authentication methods are proving insufficient for the complexity of modern, multimodal transit:

NFC: Require significant, capital-intensive infrastructure replacement, which creates a high barrier to entry and slows deployment. QR Codes: Are prone to fraud, can be easily duplicated, and suffer from friction, slowing down passenger throughput at peak hours. BLE: Relies on robust cellular connectivity, which is often unavailable in critical transit environments, such as underground tunnels or moving vehicles.

The strategic imperative for any transit authority or MaaS provider is to adopt a hardware-agnostic, software-defined proximity verification solution that is secure, fast, and works reliably regardless of network availability.

The Strategic Imperative: Securing the Transaction at the Point of Presence

The sophistication of mobile fraud is escalating, posing a threat to the integrity of digital payment systems. Fraudsters exploit vulnerabilities, such as deferred payment authorization, to use compromised credentials repeatedly.

The solution requires a layer of security that instantly validates both the physical proximity and digital identity of the passenger. LISNR, as a worldwide leader in proximity verification, delivers this capability by transforming everyday audio components into secure transactional endpoints.

Technical Solution: Proximity Authentication with Radius® and ToneLock

LISNR’s technology provides a secure, reliable, and cost-effective foundation for next-generation transit ticketing and ticket validation. This is achieved through the Radius® SDK, which facilitates the ultrasonic data-over-sound communication and the proprietary ToneLock security protocol.

Proximity Validation with Radius

The Radius SDK is integrated directly into the transit agency’s mobile application and installed as a lightweight software component onto existing transit hardware equipped with a speaker or microphone (e.g., fare gates, information screens, on-bus systems).

Offline Capability: The MaaS application uses ultrasonic audio with user ticket data embedded within for fast data exchange. Crucially, the tone generation and verification process can occur entirely offline, ensuring that ticketing and payment validation remain functional and sub-second fast, even in areas with zero network coverage. Hardware Agnostic Deployment: Since Radius only requires a standard speaker and microphone, it eliminates the high cost and complexity of deploying proprietary NFC hardware, allowing for rapid and scalable deployment across an entire fleet or network. Security for Fraud Prevention

To combat the growing threat of mobile fraud, LISNR enables ecosystem leaders to deploy multiple advanced measures directly into the ultrasonic transaction:

ToneLock Security: Every Radius transaction can be protected by ToneLock, a proprietary tone security protocol. Only the intended receiver, with the correct, pre-shared key, can demodulate and authenticate the tone. AES256 Encryption: LISNR also offers the ability for developers to add the security protocol trusted by governments worldwide, AES256 Encryption, to all emitted tones. By folding this feature into mobility ecosystems, transit providers can ensure a secure and scalable solution for their ticketing infrastructure. 

 

The Top Business Values of Ultrasonic Proximity in Transit

For forward-thinking transit agencies and MaaS providers, adopting LISNR’s technology offers tangible operational and financial advantages:

Reduced Capital and Operational Expenditure Business Value: Eliminates the need for expensive, proprietary NFC reader hardware replacement and maintenance. Impact on ROI: Lowered infrastructure cost and faster time-to-market for new ticketing solutions. Enhanced Security and Revenue Protection Business Value: ToneLock and Encryption provide an advanced and off-network security layer for ticket and payment authentication. Impact on ROI: Significant reduction in fare evasion, fraud, and revenue leakage, directly increasing financial stability. Superior Passenger Throughput and Experience Business Value: Sub-second authentication regardless of connectivity or weather conditions. Impact on ROI: Increased rider throughput and satisfaction, encouraging greater adoption of digital ticketing and MaaS. Future-Proof and Scalable Platform Business Value: Provides a flexible, software-defined foundation that easily integrates with new Account-Based Ticketing (ABT) and payment models. Impact on ROI: Ensures longevity of infrastructure and adaptability to future urban mobility standards.

By integrating the Radius SDK into their existing platform, transit operators secure their revenue, eliminate infrastructure debt, and deliver the seamless, high-security experience modern passengers demand. 

Are you interested in how Radius can provide an additional stream while onboard (i.e. proximity marketing)? Are you using a loyalty system to capture and reward your most loyal riders? Want to learn more about how Radius works in your ecosystem? Fill out the contact form below to get in contact with an ultrasonic expert.

The post The New Transit Security Mandate appeared first on LISNR.

Elliptic analysis reveals that North Korea-linked hackers have already stolen over $2 billion in cryptoassets in 2025, the largest annual total on record, with three months still to go. 

Thales Alenia Space inaugurates state-of-the-art Space Smart Factory tas Tue, 10/07/2025 - 12:51 Space

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 07 Oct 2025

One of Europe’s smartest, digital and reconfigurable manufacturing facilities, located in Rome, Italy

• This achievement was made possible by significant funding from the Italian Space Agency through PNRR (Italy’s recovery and resilience plan) funds, as well as substantial investments from Thales and Leonardo.

• Paradigm shift in the construction of space systems thanks to highly modular and configurable cleanrooms.

• Increased production capacity for satellites across various classes and applications, including large constellations.

• Intensive use of digital technologies, and Industry 4.0, including robotics, offering digital continuity between systems, from engineering activities up to production.

• First satellites to be tested and integrated in the new-generation cleanrooms: the second-generation Galileo constellation satellites, new Copernicus missions, including ROSE-L and CIMR, as well as the Sicral 3 satellite.

• Joint Lab is the facility’s strategic hub: an innovative collaborative space bringing together SMEs in the supply chain and fostering dialogue with universities and research centers.

 

Rome, October 7, 2025 – Thales Alenia Space, a joint venture between Thales (67%) and Leonardo (33%), has today inaugurated its Space Smart Factory in Rome with a ceremony attended by Italian President Sergio Mattarella. The factory — one of Europe’s largest intelligent, digital, reconfigurable manufacturing facilities — is located at the Tecnopolo Tiburtino high-tech innovation hub in Rome.

President of the Italian Republic, Sergio Mattarella, and Minister for Enterprises and Made in Italy, Adolfo Urso,  were welcomed by Ambassador Stefano Pontecorvo, Chairman of Leonardo; Roberto Cingolani, CEO and General Manager of Leonardo, and Teodoro Valente, President of the Italian Space Agency (ASI). The delegation also included Philippe Keryer, SEVP Strategy, Research and Technology for Thales, Massimo Claudio Comparini, Managing Director of Leonardo’s Space Division and Chairman of the Thales Alenia Space Supervisory Board, Hervé Derrey, President and CEO of Thales Alenia Space, and Giampiero Di Paolo, Deputy CEO of Thales Alenia Space and CEO of Thales Alenia Space Italia.

The Space Smart Factory is the concrete result of an investment of over €100 million, partly financed through PNRR funds managed by the Italian Space Agency and by substantial investments from Thales and Leonardo.

The new production hub, scheduled to begin operations by year’s end with work on the Sicral 3 satellite for the Italian Defense Ministry, is based at Rome’s Tecnopolo Tiburtino — a center of technological excellence bringing together 150 companies, mostly SMEs, closely integrated with the city and its industrial landscape.

© Thales Alenia Space/ M.Iacobucci

From left to right: Hervé Derrey, President and CEO of Thales Alenia Space, Ambassador Stefano Pontecorvo, Chairman of Leonardo, Sergio Mattarella, President of the Italian Republic, Adolfo Urso, Minister for Enterprises and Made in Italy, Roberto Cingolani, CEO and General Manager of Leonardo, Giampiero Di Paolo, Deputy CEO of Thales Alenia Space and CEO of Thales Alenia Space Italia, Teodoro Valente, President of the Italian Space Agency (ASI), Massimo Claudio Comparini, Managing Director of Leonardo’s Space Division and Chairman of the Thales Alenia Space Supervisory Board, and Philippe Keryer, SEVP Strategy, Research and Technology for Thales.

 

“Today, Italy soars even higher. With the inauguration of this new Space Smart Factory, we are taking another strategic step to strengthen the national space supply chain and consolidate Italy’s leadership by enhancing our capacity to design and integrate next-generation satellites,” said Adolfo Urso, Minister for Enterprises and Made in Italy. “This project also stands as a concrete example of effective collaboration between the public and private sectors and of the virtuous use of PNRR funds. Italy knows how to invest with strategic vision in key sectors, generating growth and qualified employment. We are at the forefront of strengthening our technological sovereignty and projecting our industrial system into the future,” said Adolfo Urso, Minister for Enterprises and Made in Italy.

“The inauguration of this state-of-the-art facility crowns years of intense efforts by Italian Space Agency and completes the network of facilities operating throughout the country for the assembly, integration and testing of satellite” said Teodoro Valente, President of the Italian Space Agency. “The Space Factory program also represents a virtuous example of public-private collaboration for the benefit of the entire national ecosystem, having effectively used the resources of the PNRR to permanently endow the country with a strategic asset. Thanks to the functionality and production capacity of this plant, Italy stands as a reference point for the realization of large satellite infrastructures in the field of Earth Observation, Telecommunications and Navigation.”

“I’m especially proud to inaugurate this new state-of-the-art facility, designed to rank among the world’s most advanced for space system production,” said Hervé Derrey, President and CEO of Thales Alenia Space. “Leveraging the latest technologies, the Space Smart Factory will enhance Thales Alenia Space’s production capacity and its global competitiveness as a leading player in Europe’s space industry. In that sense, our company will even more support European and national sovereign programs as well as the continent’s major space ambitions, including in large constellations.”

“The new space factory, an investment that looks to the future and is the result of the vision of the Italian Space Agency, institutions and the company, is a benchmark for production paradigms of the European space industry,” declared Massimo Claudio Comparini, Managing Director of Leonardo’s Space Division and Chairman of the Thales Alenia Space Supervisory Board. It is a smart factory that can be reconfigured to produce all types of satellites and constellations using the principle of serialization of activities. The site is capable of producing over 100 satellites a year in the class up to 300 kilograms in an environment integrated with the most advanced digital, robotic and interconnection technologies with the ecosystem of suppliers and partners, a fundamental asset for the growth of the space economy. This is a further stimulus for the growth of space activities in Italy and Europe.”

“Today, with deep pride and in the presence of Italy’s highest institutional authority, we inaugurated our Space Smart Factory — a modern and fully digital facility and a true technological jewel,” said Giampiero Di Paolo, Deputy CEO and CEO of Thales Alenia Space Italia. “At our Satellite Integration Center in Rome — operating at full capacity — our teams have been building some of the world’s most prestigious Earth observation, telecommunications and navigation satellites, establishing the facility as a global benchmark in satellite manufacturing. Building on this legacy, the new Space Smart Factory will serve as an additional production hub able to meet the growing demand for future constellations, while reducing time-to-market and marking a real paradigm shift in space asset manufacturing. This new infrastructure will also be open to the entire supply chain, including small and medium-sized enterprises, which will be able to access it as a service — a winning formula that will strengthen our country’s role in the space economy.”

 

About the Space Smart Factory

The Space Smart Factory will employ flexible automation and digital systems to deliver high production capacity for next-generation space systems, with a strong focus on micro and small satellites, future constellations and Thales Alenia Space’s full portfolio of modular platforms for commercial and institutional programs. It will also support the rapid refurbishment of innovative, modular, high-performance platforms for future constellations, including the European Space Agency’s ERS constellation, the Italian Space Agency’s telecommunications constellation and Leonardo’s constellation for new Earth observation services.

The Factory will use advanced digital and robotic/cobotic technologies to build satellites across multiple classes and applications. Designed to optimize capacity and reduce costs, it can manufacture more than 100 satellites per year — around two per week — with the capacity to further scale production in line with market demand. Furthermore, being part of Italy’s network of interconnected space factories, it will amplify synergies and capacities. Through its open approach to the entire supply chain and close work with academia, it will drive the development of new products and professional skills.

With modular cleanrooms and advanced digital technologies, the Space Smart Factory can be reconfigured to meet production needs, supporting the integration and testing of a wide range of satellites — from Earth observation, navigation and space telecommunications to automated and reusable vehicles and in-orbit servicing demonstrators. As a true digital hub, the center will apply cutting-edge tools and methods across every stage of satellite design, assembly, integration and testing. These include numerical modeling and digital twin technologies, virtual and augmented reality, integrated simulators connected to the supply chain and advanced automation solutions such as robots and cobots. Another advantage of the facility relies on its ability to address large constellations up to several hundred satellites.

All assembly and integration areas are now complete. This new facility will boost the Rome site’s production capacity, with plans to recruit additional highly qualified employees. Once fully operational, the Space Smart Factory will begin testing and integrating its first satellites in the new-generation cleanrooms: the Sicral 3 defense satellite, second-generation Galileo constellation satellites and new Copernicus program satellites, including ROSE-L and CIMR.

A strategic cornerstone of the facility is the Space Joint Lab — an innovative, fully flexible collaborative space strongly backed by ASI through PNRR funds. It is designed to train new professionals in space disciplines and foster the development of innovative ideas and products in partnership with SMEs, startups, suppliers, industry partners and research centers.

This new entity also brings together top expertise in aerospace and industrial disciplines from academic institutions such as Politecnico di Milano and the University of Rome “La Sapienza,” along with the global know-how of Accenture, a leader in digital and process innovation for the aerospace sector.

The entire project is guided by sustainable architecture principles, with a strong focus on energy efficiency and extensive use of renewable energy enabled by digital technologies. The building is LEED certified and equipped with rainwater recovery systems and solar panels supplying around 10% of its energy needs. It also has an installed power capacity of 4.5 MW, supported by a redundant system to guarantee 24/7 operational continuity.

The facility was designed by eos s.r.l., which also supervised the project, and built by CBRE | Hitrac, a global leader in critical infrastructure technologies and lifecycle services for advanced technology systems. Leonardo Global Solutions oversaw the entire real estate operation — from land acquisition and procurement management to the launch of construction.

© Thales Alenia Space

 

Notes

Eos, headquartered in Milan and Rome, is an integrated engineering services company built on teamwork. Its matrix organization supports a multidisciplinary approach, combining expertise in architecture, structural engineering, safety and civil plant systems. www.eosweb.it

CBRE | Hitrac is a global leader in technologies for critical infrastructure and services covering the entire lifecycle of advanced technological systems. www.hitrac-engineering.com

Leonardo Global Solutions (LGS), a service provider for Leonardo, operates with the primary objective of creating value for the entire Leonardo Group. It supports business activities in Italy and abroad with economic efficiency and process standardization, aiming at technological innovation and promoting the wellbeing of people, aligned with common sustainability goals. https://leonardoglobalsolutions.com/it/home

 

About Thales Alenia Space

Drawing on over 40 years of experience and a unique combination of skills, expertise and cultures, Thales Alenia Space delivers cost-effective solutions for telecommunications, navigation, Earth observation, environmental monitoring, exploration, science and orbital infrastructures. Governments and private industry alike count on Thales Alenia Space to design satellite-based systems that provide anytime, anywhere connections and positioning, monitor our planet, enhance management of its resources and explore our Solar System and beyond. Thales Alenia Space sees space as a new horizon, helping build a better, more sustainable life on Earth. A joint venture between Thales (67%) and Leonardo (33%), Thales Alenia Space also teams up with Telespazio to form the Space Alliance, which offers a complete range of solutions including services. Thales Alenia Space posted consolidated revenues of €2.23 billion in 2024 and has more than 8,100 employees in 7 countries with 14 sites in Europe. www.thalesaleniaspace.com

View PDF market_segment : Space thales-alenia-space-inaugurates-state-art-space-smart-factory On

“The Internet is too big to fail, but it may be becoming too big to hold together as one.”

Many of the people reading this post grew up believing and expecting in a single, borderless Internet: a vast network of networks that let us talk, share, learn, and build without arbitrary walls. I like that model, probably because I am a globalist, but I don’t think that’s where the world is heading. In recent years, laws, norms, infrastructure, and power pulling in different directions, driving us increasingly towards a fragmented Internet. This is a reality that is shaping how we connect, what tools we use, and who controls what.

In this post, I talk about what fragmentation is, how it is happening, why it matters, and what cracks in the system may also open up room for new kinds of opportunity. It’s a longer post than usual; there’s a lot to think about here.

A Digital Identity Digest The End of the Global Internet Play Episode Pause Episode Mute/Unmute Episode Rewind 10 Seconds 1x Fast Forward 30 seconds 00:00 / 00:16:34 Subscribe Share Amazon Apple Podcasts CastBox Listen Notes Overcast Pandora Player.fm PocketCasts Podbean RSS Spotify TuneIn YouTube iHeartRadio RSS Feed Share Link Embed

You can Subscribe and Listen to the Podcast on Apple Podcasts, or wherever you listen to Podcasts.

And be sure to leave me a Rating and Review!

What is “fragmentation”?

Fragmentation isn’t a single event with a single definition; it’s a multi-dimentional process. Research has identified at least three overlapping types:

Technical fragmentation: differences in protocols, infrastructure, censorship, filtering; sometimes entire national “gateways” or shutdowns. Regulatory / governmental fragmentation: national laws around data flows, privacy, platform regulation, online safety, and content moderation diverge sharply. Commercial fragmentation: companies facing divergent rules in different markets (privacy, liability, content) so they adapt differently; global products become “local versions.”

A primer from the United Nations Institute for Disarmament Research (UNIDIR) published in 2023 lays this out in detail. The authors of that paper argue that Internet fragmentation is increasingly something that influences cybersecurity, trade, national security, and civil liberties. Another study published not that long ago in SciencesPo suggests that fragmentation is shifting from inward-looking national control toward being used as a tool of power projection; i.e. countries not only fence their own access, but use fragmented rules or control of infrastructure to impose influence beyond their borders.

Evidence: How fragmentation is happening

Sounds all conspiracy theory, doesn’t it? Here are some concrete examples and trends.

Divergent regulatory frameworks The European Union, China, and the U.S. are increasingly adopting very different regulatory models for digital platforms, data privacy, and online content. The “prudent regulation” approach in the EU (which tends toward pre-emptive checks, heavy regulation) contrasts with the more laissez-faire (or “permissionless”) philosophy in parts of the U.S. or other jurisdictions. I really like how that’s covered in the Fondation Robert Schuman’s paper, “Digital legislation: convergence or divergence of models? A comparative look at the European Union, China and the United States.“ Countries around the world have passed or are passing online safety laws, content moderation mandates, or rules that give governments broad powers over what gets seen, what stays hidden, and what content is restricted. Check out the paper published in the Tech Policy Press, “Amid Flurry of Online Safety Laws, the Global Online Safety Regulators Network is Growing” for a lot more on that topic. Regulatory divergence not only in content, but in infrastructure: for example laws about mandatory data localization, national gateways, network sovereignty. These increase the cost and complexity for cross-border services. Few organizations know more about that than the Internet Society, which has an explainer entirely dedicated to Internet fragmentation.

While this divergence creates friction for global platforms, it also produces positive spillovers. The ‘Brussels Effect’ has pushed companies to adopt GDPR-level privacy protections worldwide rather than maintain separate compliance regimes, raising the baseline of consumer trust in digital services. At the same time, the OECD’s latest Economic Outlook stresses that avoiding excessive fragmentation will require countries to cooperate in making trade policy more transparent and predictable, while also diversifying supply chains and aligning regulatory standards on key production inputs.

Taken together, these trends suggest that even in a fragmented environment, stronger rules in one region can ripple outward, whether by shaping global business practices or by encouraging cooperation to build resilience. Of course, this can work both positively and negatively, but let’s focus on the positive for the moment. “Model the change you want to see in the world” is a really good philosophy.

Technical / infrastructural separation National shutdowns or partial shutdowns are still used by governments during conflict, elections, or periods of dissent. Internet Society’s explainer catalogues many examples, but even better is their Pulse table that shows where there have been Internet shutdowns in various countries since 2018. Some countries are building or mandating their own national DNS, national gateways, or other chokepoints—either to control content, enforce digital sovereignty, or “protect” their citizens. These create friction with global addressing, with trust, with how routing and redundancy work. More information on that is, again, in that Internet Society fragmentation explainer.

That said, fragmentation at the infrastructure level can also accelerate experimentation with alternatives. In regions that experience shutdowns or censorship, communities have adopted mesh networks and peer-to-peer tools as resilient stopgaps. Research from the Internet Society’s Open Standards Everywhere project, no longer a standalone project but still offering interesting observations, shows that these architectures, once fringe, are being refined for broader deployment, pushing the Internet to become more fault-tolerant.

Commercial & trade-driven fragmentation Platforms serving global audiences must adapt to local laws (e.g., privacy laws, content moderation laws) so they build variants. The result is that features, policies, even user experience diverge by country. I’m not even going to try to link to a single source for that. It’s kind of obvious. Also, restrictive trade policies (export controls, sanctions) affect what hardware/software can move across borders. Fragmentation in what devices can be used, which cloud services, etc., often comes from supply-chain / trade policy rather than purely from regulation. The UNIDIR primer notes how fragmentation when applied to cybersecurity or export controls ripples through global supply.

Yet duplication of supply chains can also help build redundancy. The CSIS reports on semiconductor supply chains notes (see this one as an example) that efforts to diversify chip fabrication beyond Taiwan and Korea, while expensive, reduce systemic risks. Similarly, McKinsey’s “Redefining Success: A New Playbook for African Fintech Leaders” highlights how African fintechs are thriving by tailoring products to fragmented regulatory and infrastructural environments, turning local constraints into opportunities for growth in areas like cross-border payments, SME lending, and embedded finance. There’s a lot to study there in terms of what opportunity might look like.

I’d also like to point to the opportunities described in the AMRO article “Stronger Together: The Rising Relevance of Regional Economic Cooperation” which describes how ASEAN+3 member states are using frameworks like the Regional Comprehensive Economic Partnership (RCEP), Economic Partnership Agreements, and institutions such as the Chiang Mai Initiative to deepen trade, investment, financial ties, and regulatory cooperation. These are not just formal treaties but mechanisms for cross-border resilience, helping supply chains, capital flows, and finance networks absorb external shocks. This blog post is already crazy long, so I won’t continue, but there is definitely more to explore with how to meet this type of fragmentation with a more positive mindset.

Why does it matter?

Why should we care that the Internet is fragmenting? If there are all sorts of opportunities, do we even have to worry at all? Well, yes. As much as I’m looking for the opportunities to balance the breakages, we still have to keep in mind a variety of consequences, some immediate, some longer-term.

Loss of universality & increased friction

The Internet’s power comes from reach and interoperability: you could send an email or view a website in Boston and someone in Nairobi could see it without special treatment. But as more rules, filters, and walls are inserted, that becomes harder. Services may be blocked, slowed, or restricted. Different regulatory compliance regimes will force more localization of infrastructure and data. Users may need to use different tools depending on where they are. Work that used to scale globally becomes more expensive.

However, constraints often fuel creativity. The World Bank has documented how Africa’s fintech ecosystem thrived under patchy infrastructure, leapfrogging legacy systems with mobile-first solutions. India’s Aadhaar program is another case where local requirements drove innovation that now informs digital identity debates globally. Fragmentation can, paradoxically, widen the palette of local solutions while reducing the palette of global solutions.

Security, surveillance, and trust challenges

Fragmentation creates new attack surfaces and risk vectors. For example:

If traffic must go through national gateways, those are chokepoints for surveillance, censorship, or abuse. If companies cannot use global infrastructure (CDNs, DNS, encryption tools) freely, fragmentation may force weaker substitutes or non-uniform security practices. Divergent laws about encryption or liability may reduce trust in cross-border services or require large overheads. The UNIDIR primer emphasizes these concerns. Economic costs and innovation drag Fragmentation means duplicate infrastructure: separate data centres, duplicated content moderation teams, local legal teams. That’s inefficient. Products and platforms may need multiple variants, reducing scale economies. Cross-border collaboration, which has been a source of innovation (in open source, research, startups) becomes more legally, technically, culturally constrained. Unequal access and power imbalances Countries or regions with weaker regulatory capacity, limited infrastructure, or less technical expertise may be less able to negotiate or enforce their interests. They could be “locked out” of parts of the Internet, or forced to use inferior services. Big tech companies based in powerful jurisdictions may be able to shape global norms (via export, legal reach, or market power) in ways that reflect their values, often without much input from places with less power. This may further amplify inequalities. What counters or moderating factors exist?

Fragmentation is not unilateral nor total. There are forces, capacities, and policies that push in the opposite direction, or at least slow things down.

Standardization bodies / global protocols. The Internet Engineering Task Force (IETF), the W3C, ICANN, etc., continue to undergird a lot of the technical plumbing (DNS, HTTP, TCP/IP, SSL/TLS, etc.). These are not trivial to replace, though it seems like some regional standards organizations are trying. Commercial incentives for compatibility. Many platforms serving global markets prefer to maintain a common codebase, or to comply with the most restrictive regulation so it applies everywhere (bringing us back to the Brussels Effect). If a regulation (e.g., privacy law) in one place is strong, firms may just adopt it globally rather than maintain separate versions. User demand and expectation. Users expect services to “just work” across borders—social media, video conferencing, cloud tools. If fragmentation hurts usability, there is political/popular pushback. Cross-border political/institutional cooperation. Trade agreements, multi-stakeholder governance efforts, and international bodies sometimes negotiate common frameworks or minimum standards (e.g., data flow provisions, privacy protections, cybersecurity norms).

These moderating factors mean that fragmentation is not an all-or-nothing state; it will be uneven, partial, and contested.

What we (you, we, society) can do to navigate & shape the outcome

Fragmentation is already happening; how we respond matters. Here are some ways to think about shaping the future so that it is not simply divided, but more resilient and fair.

Advocate for interoperable baselines. Even as parts diverge, there can be minimum standards—on encryption, addressing, data portability, etc.—that maintain some baseline interoperability. This ensures users don’t fall off the map just because their country has different laws. Design for variation. Product and service designers need to think early about how their tools will work under different regulatory, infrastructural, and socio-political regimes. That means thinking about offline/online tradeoffs, degraded connectivity, local content, privacy expectations, etc. Invest in local capability. Regions with weaker infrastructure, less regulatory capacity, or less technical workforce should invest (or have investment from partners) in building up their tech ecosystems, including data centers, networking, local content, and developer education. This mitigates risk of being passive recipients rather than active shapers. Cross-bloc cooperation & treaties. Trade agreements or regional alliances for digital policies could harmonize rules where possible (e.g., privacy, data flows, cybersecurity), reduce compliance burden, and keep doors open across regions. New infrastructural experiments. Thinking creatively: mesh networks, decentralized Internet architecture, peer-to-peer content distribution, alternative routing, redundancy in undersea cables etc. In context of fragmentation, some of these may move from research curiosities to vital infrastructure. Policy awareness & public engagement. People often take the openness of the Internet for granted. Public debates, awareness of policy changes (online safety, surveillance, digital sovereignty) matter. A more informed citizenry can push for policies that preserve openness and resist overly restrictive fragmentation. Anchor in human rights and global goals. Fragmentation debates can’t just be about pipes and protocols. They must also reflect the fundamentals of an ethical society: protecting human rights, ensuring equitable access, and aligning with global commitments like the United Nations Sustainable Development Goals (SDGs) and the Global Digital Compact. These frameworks remind us that digital infrastructure isn’t an end in itself. It’s a means to advance dignity, inclusion, and sustainable development. Even as the Internet fragments, grounding decisions in these principles can help keep diverse systems interoperable not just technically, but socially. Recalibration

The “global Internet” is fragmenting, if it ever really existed at all. That’s a statement I’m not comfortable with but which I’m also not going to approach as the ultimate technical tragedy. Fragmentation brings friction, risks, and challenges, sure. It threatens universality, raises security concerns, and could amplify inequalities. But it also forces us to imagine new architectures, new modes of cooperation, new ways to build more resilient and locally grounded technologies. It means innovation might look different: less about global scale, more about boundary-crossing craftsmanship, local resilience, hybrid systems.

In the end, fragmentation isn’t simply an ending. It may be a recalibration. The question is: will we let it just fragment into chaos, or guide it into a future where multiple, overlapping digital worlds still connect, where people everywhere are participants and not just objects of regulation?

Question for you, the reader: If the Internet becomes more of a patchwork than a tapestry, what kind of bridges do you think are essential? What minimum interoperability, trust, and rights should be preserved across borders?

If you’d rather track the blog than the podcast, I have an option for you! Subscribe to get a notification when new blog posts go live. No spam, just announcements of new posts. [Subscribe here] 

Transcript

Hi everyone, and welcome back to the Digital Identity Digest. Today’s episode is called The End of the Global Internet.

This episode is longer than usual because there’s a lot to unpack. The global Internet, as we once imagined it, is changing rapidly. While it isn’t collapsing overnight, it is fragmenting. That fragmentation brings real risks — but also some surprising opportunities.

Throughout this month, I’ll be publishing slightly longer episodes, alongside detailed blog posts with links to research and source material. I encourage you to check those out as well.

What Fragmentation Really Means

[00:01:15] Many of us grew up hoping for a single, borderless Internet: a vast network of networks without arbitrary firewalls. I’ve always loved that model, perhaps because I’m a globalist at heart. But that’s not where we’re heading.

In recent years, laws, cultures, infrastructure, and politics have pulled the Internet in different directions. The result? An increasingly fragmented landscape.

Researchers describe three key dimensions of fragmentation:

Technical fragmentation – national firewalls, alternative DNS systems, and content filtering that alter the “plumbing” of the Internet. Regulatory fragmentation – divergent laws on privacy, content, and data, such as the GDPR compared with lighter-touch U.S. approaches. Commercial fragmentation – companies restricting services by geography, whether for compliance, cost, or strategy.

Together, these layers create friction in what once felt like a seamless system.

Evidence of Fragmentation in Practice

[00:04:18] Let’s look at how fragmentation is showing up.

Regulatory divergence – The EU, China, and the U.S. are moving in very different directions. The EU emphasizes heavy regulation and precaution. The U.S. takes a lighter (but shifting) approach. China uses regulation to centralize control. Interestingly, strict laws often set global baselines. The Brussels Effect demonstrates how GDPR effectively raised global privacy standards, since it’s easier for companies to comply everywhere. Technical fragmentation – Governments are experimenting with independent DNS systems, national gateways, and even Internet shutdowns during protests or elections. On the flip side, this has fueled mesh networks and decentralized DNS, once fringe ideas that now serve as resilience tools. Commercial fragmentation – Supply chains and trade policy drive uneven access to hardware and cloud services. For example: Semiconductor fabs are being built outside Taiwan and Korea. New data centers are emerging in Africa and Latin America. African fintech thrives precisely because local firms adapt to fragmented conditions.

McKinsey projects African fintech revenues will grow nearly 10% per year through 2028, showing how local innovation can thrive in fragmented markets.

Why Fragmentation Matters

[00:06:45] Fragmentation has profound consequences.

Universality weakens – The original power of the Internet was its global reach. Fragmentation erodes that universality. Security and trust challenges – Choke points and divergent encryption weaken cross-border trust. Economic costs – Companies must duplicate infrastructure and compliance, slowing innovation. Inequality deepens – Weaker regions risk being left behind, forced to adopt systems imposed by stronger players. Moderating Factors

[00:08:30] Fragmentation isn’t absolute. Several forces hold the Internet together:

Standards bodies like IETF and W3C keep core protocols aligned. Companies often adopt the strictest regimes globally, simplifying compliance. Users expect services to work everywhere — and complain when they don’t. Regional cooperation (e.g., EU, ASEAN, African Union) helps maintain partial cohesion.

These factors form the connective tissue that prevents a total collapse.

Possible Future Scenarios

[00:09:45] Looking ahead, I see four plausible scenarios:

Soft fragmentation Internet stays global, but friction rises. Platforms launch regional versions, compliance costs increase. Opportunity: stronger local ecosystems and regional innovation. Regulatory blocks Countries form digital provinces with internal harmony but divergence elsewhere. Opportunity: specialization (EU in privacy tech, Africa in mobile-first innovation, Asia in super apps). Technical fragmentation Shutdowns, divergent standards, and outages become common. Opportunity: mainstream adoption of decentralized and peer-to-peer networks. Pure isolationism Countries build proprietary platforms, national ID systems, and local chip fabs. Opportunity: preservation of local values, region-specific innovation. What Can We Do?

[00:12:28] In the face of fragmentation, individuals, companies, and policymakers can take action:

Advocate for interoperable baselines (encryption, addressing, data portability). Design for variation so systems degrade gracefully under different regimes. Invest in local capacity — infrastructure, skills, developer ecosystems. Encourage regional cooperation through treaties and data agreements. Experiment with alternative architectures like mesh networks and decentralized identity. Anchor change in human rights — align with UN SDGs, protect freedoms, and center people, not just states or corporations. Closing Thoughts

[00:15:50] The global Internet as we knew it may be ending — but that isn’t necessarily a tragedy.

Yes, fragmentation creates friction, risks, and inequality. But it also sparks resilience, innovation, and adaptation. In Africa, fintech thrives under fragmented conditions. In Europe, strong privacy laws raise global standards. In Asia, regional trade frameworks offer cooperation despite divergence.

The real question isn’t whether fragmentation is coming — it’s already here. The question is:

What kind of fragmented Internet do we want to build? Which bridges are worth preserving? Which minimum standards — technical, ethical, social — should always cross borders?

These questions shape not only the Internet’s future, but our own.

[00:18:45] Thank you for listening to the Digital Identity Digest. If you found this episode useful, please subscribe to the blog or podcast, share it with others, and connect with me on LinkedIn @hlflanagan.

Stay curious, stay engaged, and let’s keep these conversations going.

The post The End of the Global Internet appeared first on Spherical Cow Consulting.

Since the dawn of Ethereum, interacting with blockchains has meant using Externally Owned Accounts (EOAs) - simple wallets controlled by a private key. While functional, EOAs expose serious limitations: lose your key, and you lose your funds. Want features like spending limits, session keys, or social recovery? You’re left with clunky, layered workarounds.

Enter Account Abstraction (AA) and Smart Accounts. Together, these innovations are transforming how users engage with Web3 by merging the flexibility of smart contracts with the usability of traditional wallets. Instead of thinking about wallets as rigid containers of keys, we can now imagine them as programmable, customizable gateways into the blockchain world.

This article explores how Smart Accounts and Account Abstraction fit together, referencing key Ethereum proposals EIP-4337, EIP-3074, and EIP-7702 and why this combination is essential for building the next wave of user-friendly, secure, and innovative blockchain applications.

What is Account Abstraction?

Account Abstraction is the idea of treating all blockchain accounts as programmable entities. Instead of separating EOAs (controlled by private keys) and contract accounts (controlled by code), AA allows accounts themselves to act like smart contracts.

Key benefits of AA include:

Gas abstraction: Pay transaction fees in tokens other than ETH.
Programmable security: Add multi sig, time locks, or social recovery. Batched transactions: Execute multiple actions in one click.
Session keys: Grant temporary permissions for games or dApps. Upgradability: Evolve wallet logic without replacing accounts.

With AA, wallets evolve from being passive key holders into active smart entities capable of executing logic on behalf of their users.

What are Smart Accounts?

If Account Abstraction is the theory, Smart Accounts are the practice. A Smart Account is simply a blockchain account that operates under the AA model.

Instead of relying on a single private key, a Smart Account:

Runs customizable logic like a smart contract. Supports flexible authentication methods (biometrics, passkeys, hardware modules). Allows advanced features such as automatic payments, subscription models, or delegated access. Provides recoverability through trusted guardians or social recovery mechanisms.

In short, Smart Accounts are the user-facing manifestation of Account Abstraction. They bring abstract design principles into tangible experiences, making Web3 more accessible for everyday users.

How They Fit Together

Think of Account Abstraction as the architectural blueprint and Smart Accounts as the actual buildings.

AA defines the rules: It sets the framework for programmable accounts. Proposals like EIP-4337 specify how transactions are validated and bundled without relying solely on EOAs.

2. Smart Accounts implement the

rules:

They apply those AA rules to create practical wallets. Through smart contracts, they support features like gasless transactions, account recovery, and key rotation.

Together, AA and Smart Accounts replace the outdated key-wallet model with a flexible, modular system where user experience comes first.

The Role of Key EIPs

Ethereum’s progress toward AA and Smart Accounts has been guided by several proposals:

EIP-4337 (2021):
Introduced the concept of a “UserOperation” and “bundlers.” This allows smart accounts to function without requiring changes at the consensus layer. It is the backbone of today’s AA-compatible wallets. EIP-3074:
Enables EOAs to delegate control to contracts temporarily, bridging the gap between old wallets and smart accounts. EIP-7702 (2024):
Builds on 3074 but provides a safer and more streamlined way for EOAs to transition into smart accounts. This is critical for onboarding existing users without forcing them to abandon their current wallets.

Together, these proposals ensure that Smart Accounts are not just theoretical they’re backward-compatible, forward-looking, and ready for mainstream adoption.

Why This Matters for Users

For users, the combination of AA and Smart Accounts translates into real-world improvements:

Safety: Lose your key? No problem recover your wallet using guardians or multi-sig setups. Simplicity: Pay fees with stablecoins, batch multiple dApp actions into one transaction, or play a blockchain game without constant wallet prompts. Flexibility: Switch security models as your needs change (e.g., from a simple wallet as a beginner to a multi sig or hardware protected wallet as your assets grow). Innovation: Developers can build richer applications subscription based dApps, automated DeFi strategies, or Web3-native identity systems.

This shifts the user experience from fear of making mistakes to freedom to explore.

A Fresh Perspective: Smart Accounts as Digital Personas

One way to think creatively about Smart Accounts is to view them not just as wallets, but as digital personas.

Just as you might have different identities in real life personal, professional, or gaming Smart Accounts allow you to manage multiple digital personas:

A DeFi persona with automated trading strategies. A gaming persona with session keys and gasless interactions. A professional persona tied to your DAO contributions.

Each persona can run its own logic while remaining linked to your overall identity. This flexibility makes Web3 personalized and intuitive, much like the evolution from simple feature phones to today’s smartphones.

Practical Takeaways for the Community

Developers: Start experimenting with Smart Account SDKs built on EIP-4337. Building dApps with native AA support will set you apart in the next wave of adoption. Users: Explore AA wallets like Safe, ZeroDev, or Soul Wallet. Get familiar with recovery options and gas abstraction to see the difference firsthand. Communities: Advocate for dApps that integrate Smart Accounts, since these models reduce onboarding friction for newcomers.

By engaging now, the community can shape how AA and Smart Accounts evolve, ensuring they remain inclusive, secure, and user first.

Conclusion

Smart Accounts and Account Abstraction are not isolated innovations they are two halves of the same revolution. Account Abstraction lays the foundation, while Smart Accounts bring it to life. Together, they unlock a Web3 experience that is safer, simpler, and infinitely more flexible than today’s wallet paradigm.

Just as the smartphone redefined what we expect from communication devices, Smart Accounts will redefine what we expect from blockchain wallets. They are not just tools to hold assets they are programmable, adaptable, and deeply human centric gateways into the decentralized world.

The future of Web3 isn’t just about protocols or assets it’s about empowering people with smarter, safer, and more intuitive digital identities. And that future begins with Smart Accounts powered by Account Abstraction.

How Smart Accounts and Account Abstraction Fit Together was originally published in OntologyNetwork on Medium, where people are continuing the conversation by highlighting and responding to this story.

Thales launches Europe’s first certified smartcard ready for the Quantum Age prezly Tue, 10/07/2025 - 07:00 Public Security Civil identity

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 07 Oct 2025 Thales’ solution is the first quantum-resistant smartcard in Europe to receive high-level security certification, underscoring its commitment to staying ahead of emerging cyber risks in the quantum era. The certified product integrates innovative cyber mechanism into a smartcard format - ideal for applications that demand strong future-proof identity protection, such as electronic ID cards, health cards, and driving licenses. It is ready for real-world deployment, providing governments and institutions with a secure foundation for next-generation identity solutions.

As quantum computing evolves, many of today’s cryptographic methods will no longer be secure, since quantum computers will be able to solve complex mathematical problems much faster than classical computers. A recent Gartner® report* says “by 2029, advances in quantum computing will make conventional asymmetric cryptography unsafe to use”, Thales has spent years investing in post-quantum cryptography to ensure critical systems stay safe in the future.

By becoming the first company to receive high-level Common Criteria1 certification for a quantum-resistant smartcard, Thales will help government services protect sensitive data - such as those on ID cards, health cards, and driver’s licenses; and ensure that citizens’ identities are secure against emerging quantum threats.

The innovative smartcard (‘MultiApp 5.2 Premium PQC’), developed by Thales and certified by the French Cybersecurity Agency (Agence nationale de la sécurité des systèmes d’information – ANSSI), uses advanced digital signature designed to resist attacks, even from powerful quantum machines. It’s the first of its kind to be certified at such a high security level (EAL 6+2) under the Common Criteria framework. The certified product also features new Digital Signature Algorithms3 standardised by the American NIST - National Institute of Standards and Technology. These specific signature algorithms are powerful cryptographic tools used to verify that data or a digital message really comes from the right sender and has not been altered.

From an end-user perspective, nothing changes: citizens will continue to use their cards as usual. What’s revolutionary is what’s inside. The card uses a new generation cryptographic signature designed to withstand the immense computing power of tomorrow’s quantum computers. This ensures that sensitive personal data remains protected not just today, but well into the future.

This first certification for a solution incorporating post-quantum cryptography reflects ANSSI’s commitment to supporting innovation, while upholding the highest cybersecurity standards. The joint work of Thales, CEA-Leti IT Security Evaluation Facility, and ANSSI is a strong signal that Europe is ready to lead the way in post-quantum security, enabling organisations and governments to deploy solutions that anticipate future risks, rather than waiting for quantum computers to become mainstream." Franck Sadmi, Head of National Certification Center, French Cybersecurity Agency (ANSSI).

This certification is a landmark moment not only for Thales but for the entire digital security ecosystem. It shows that future-proof cybersecurity is no longer a concept, it's a reality. By achieving the highest level of security for a quantum-resistant smartcard, Thales is paving the way for trust in tomorrow’s civil identities. We’re proud to lead this crucial transformation." Nathalie Gosset, VP Identity & Biometric Solutions at Thales.

More reading:

thalesgroup.com/en/news-centre/insights/public-security/national-security/introducing-eucc-new-certificate-boost

thalesgroup.com/en/news-centre/press-releases/european-consortium-launches-pqc4emrtd-project-enhance-security

1 Common Criteria : an international standard confirming the product meets strict security requirements.

2 The Evaluation Assurance Level (EAL) is an international scale used to measure the robustness of IT security. It ranges from EAL1 (basic tested) up to EAL7 (the highest, formally verified level). An EAL6+ certification means the product has been tested and proven to provide very high security against sophisticated attacks, suitable for critical applications like government, finance, and defense.

3 FIPS 204 is a new U.S. government standard that defines a digital signature algorithm designed to remain secure even in the age of quantum computers. It is a foundation for digital integrity of things like secure transactions, ID documents, software updates, or electronic contracts. FIPS standards are published and approved by NIST (the U.S. National Institute of Standards and Technology) and are widely recommended and adopted across industries worldwide, especially in sectors like government, defense, finance, and digital technology.

＊ Gartner®, Postquantum Cryptography: The Time to Prepare Is Now!, Mark Horvath et al., 1 July 2024

The Gartner content described herein (the “Gartner Content”) represents research opinion or viewpoints published, as part of a syndicated subscription service, by Gartner, Inc. ("Gartner"), and is not a representation of fact. Gartner Content speaks as of its original publication date (and not as of the date of this PR), and the opinions expressed in the Gartner Content are subject to change without notice.

GARTNER is a registered trademark and service mark of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved.

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion.

The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies.

Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.

View PDF market_segment : Public Security > Civil identity https://thales-group.prezly.com/thales-launches-europes-first-certified-smartcard-ready-for-the-quantum-age thales-launches-europes-first-certified-smartcard-ready-quantum-age On Thales launches Europe’s first certified smartcard ready for the Quantum Age

Break down the differences and relationships between JOSE, JWT, JWS, JWE, JWA, and JWK with clear explanations and examples.

Learn how Fastly builds a resilient CDN through fault isolation & graceful degradation. Discover our principles for minimizing disruption & ensuring continuous service.

September fueled Herond’s robust growth with product innovation and key partnerships. We’re thrilled to highlight the successful Herond x BingX campaign, amplifying Web 3.0 reach and engagement. This report details how we paired this impactful effort with vital platform upgrades to sustain momentum through September.

Product Updates: Login & Onboarding Improvements

We’re excited to announce two major updates designed to make your experience with Herond more seamless than ever.

Profile sync fixed: We’ve resolved synchronization issues across devices, ensuring your bookmarks, history, and settings update seamlessly in real-time. No more mismatched data – enjoy a consistent experience wherever you browse.

YouTube ads on iOS blocked: iOS users rejoice! Herond Shield now effectively blocks YouTube ads, delivering uninterrupted viewing without pop-ups or interruptions. Stream your favorites ad-free for a smoother, faster experience.

TikTok desktop playback restored: Desktop TikTok playback is back and better! We’ve fixed compatibility glitches, restoring full video support and smooth scrolling. Dive into your feed effortlessly on any screen.

Herond ID UI & icons improved: Desktop TikTok playback is back and better! We’ve fixed compatibility glitches, restoring full video support and smooth scrolling. Dive into your feed effortlessly on any screen.

Partnership

We’re excited to join forces with MetaDev, the leading Web3 authentication infrastructure. Together, we’re making Web3 browsing feel as seamless as Web2 – bringing decentralized applications closer to everyone.

Community and Events Herond x BingX Cashback Campaign

We’re thrilled to share the success of the Herond x BingX collaboration through this report. The event brings rewards, engagement, and exclusive benefits to our community. Here’s what we achieved together:

The Herond x BingX collaboration has received strong engagement from the community, with a total reward pool of up to 7,700 USDT. Our announcement post attracted nearly 2,000 views and interactions, reflecting high interest from users. To further boost excitement, we launched a Facebook minigame featuring exclusive BingX merchandise as prizes, drawing almost 50 likes and participants. In addition, 10 users joined the Premium Cashback program from Herond and BingX, highlighting the growing trust and adoption of our joint initiatives.

Tear the Bag, Win the Gift

Herond launched the “Xé Túi Trúng Quà” campaign, giving participants the chance to win the special Mid-Autumn gift box “Lạc Quy Minh Nguyệt”. Through the report, the event attracted 40 participants, gained over 100 interactions, and reached more than 1.6K users, marking a successful engagement activity for the community.

Upcoming event

Herond Quest: The Browser Battle

This is the first-ever board game set in Herond’s fantasy Internet world. After its showcases at BIGF (Thailand) and TOBE (Taiwan), the game is gearing up for appearances at Pax Melbourne and Essen (Germany). With pre-orders opening in October and a global launch planned for late October to early November, Herond Quest has already secured 100+ pre-orders from board game stores around the world.

As in this report, September was a month of strong growth and exciting milestones for Herond. From community engagement campaigns and rewarding collaborations to global showcases and product improvements, we continue to build momentum toward our vision of a secure, user-centric Web3 future. As we step into October, we’re ready to scale even further – bringing more innovation, stronger partnerships, and an even better experience for our users worldwide.

DOWNLOAD HEROND About Herond Browser

Herond Browser is a cutting-edge Web 3.0 browser designed to prioritize user privacy and security. By blocking intrusive ads, harmful trackers, and profiling cookies, Herond creates a safer and faster browsing experience while minimizing data consumption.

To enhance user control over their digital presence, Herond offers two essential tools:

Herond Shield: A robust adblocker and privacy protection suite. Herond Wallet: A secure, multi-chain, non-custodial social wallet.

As a pioneering Web 2.5 solution, Herond is paving the way for mass Web 3.0 adoption by providing a seamless transition for users while upholding the core principles of decentralization and user ownership.

Have any questions or suggestions? Contact us:

On Telegram https://t.me/herond_browser DM our official X @HerondBrowser Technical support topic on https://community.herond.org

The post Herond Browser: September 2025 Report appeared first on Herond Blog.

The post Herond Browser: September 2025 Report appeared first on Herond Blog.

ESA’s fourth Deep Space Antenna unveiled in New Norcia, Western Australia tas Mon, 10/06/2025 - 08:37 Space

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 06 Oct 2025

New Norcia, Australia, October 6, 2025 – The European Deep Space Antenna Alliance (E-DSA²) formed by Thales Alenia Space, Schwartz Hautmont and mtex antenna technology, celebrated the inauguration of the European Space Agency’s NNO-3 deep space antenna masterpiece for the New Norcia ground station near Perth, Australia, on October 4. NNO-3 is part of ESA’s ESTRACK global network of ground stations.

This new-generation 35-meter antenna will enable ESA to increase its communication capabilities in X, K and Ka frequency bands. It will expand its antennas network made for tracking and collecting scientific data from ESA spacecraft in the solar system, including missions such as the ExoMars Trace Gas Orbiter, currently orbiting around the Red Planed or Euclid which will cover one third of the sky studying dark matter and energy, to name a few. These jewels of high technology will be joined by upcoming missions such as Plato, designed to detect and observe exoplanets, whose launch is scheduled for next year.

© Thales Alenia Space

Days ago, NNO-3 successfully received its first signal coming from the Euclid spacecraft. The deep-space antenna challenge is to pick up very faint signals and then boost them considerably for transmission from and to objects in deep space, to enable reception of science data and uploading of commands to space probes.

Thales Alenia Space, a joint venture between Thales (67 %) and Leonardo (33 %), is the consortium partner in charge of the antenna’s overall performance. The company was also responsible for the antenna systems engineering, the overall system and equipment (radio frequency, power, cooling, etc.). Schwartz-Hautmont was responsible for the antenna mechanical structure engineering, manufacturing and installation. mtex antenna technology was in charge of the antenna mechanical design, procurement, installation and testing.

© Thales Alenia Space

“I would like to thank the European Space Agency for placing its trust in our consortium to carry out the manufacturing of the second Deep Space Antenna in New Norcia, now the fourth in ESA’s network,” said Thales Alenia Space CEO, Hervé Derrey. “This first major success for the E-DSA² consortium will surely pave the way for other opportunities on the institutional market and beyond.”

“This project, which started as a challenge to improve the performance of existing antennas, has extracted the best of each E-DSA² consortium member. We are happy to deliver this state-of-the-art antenna and are grateful to the ESA for having trusted us,” said Antonio Aldecoa, Schwartz Hautmont’s CEO.

 

About the E-DSA² consortium
The European Alliance for Deep Space Antennas (E-DSA²) is formed by Thales Alenia Space, Schwartz-Hautmont and mtex antenna technology.

The E-DSA² consortium also relies on the proven products and renowned expertise of Callisto France, a mid-size firm in Villefranche de Lauragais, for the cryogenically cooled LNAs, and on Rheinmetall Italy for the HPAs.

See here for more details about the ESTRACK antenna network. Access EstrackNOW to follow ground station activity in real-time.

 

About Thales Alenia Space

Drawing on over 40 years of experience and a unique combination of skills, expertise and cultures, Thales Alenia Space delivers cost-effective solutions for telecommunications, navigation, Earth observation, environmental monitoring, exploration, science and orbital infrastructures. Governments and private industry alike count on Thales Alenia Space to design satellite-based systems that provide anytime, anywhere connections and positioning, monitor our planet, enhance management of its resources and explore our Solar System and beyond. Thales Alenia Space sees space as a new horizon, helping build a better, more sustainable life on Earth. A joint venture between Thales (67%) and Leonardo (33%), Thales Alenia Space also teams up with Telespazio to form the Space Alliance, which offers a complete range of solutions including services. Thales Alenia Space posted consolidated revenues of €2.23 billion in 2024 and has more than 8,100 employees in 7 countries with 14 sites in Europe. www.thalesaleniaspace.com

View PDF market_segment : Space esas-fourth-deep-space-antenna-unveiled-new-norcia-western-australia On

Want to browse the web without leaving a trace? Herond Browser’s Incognito Mode lets you do just that. But what exactly does it do, and how can it protect your privacy? Let’s find out.

What is Incognito Mode?

Incognito Mode is a privacy feature in Herond Browser that allows you to browse the internet without saving certain information about your browsing session. When you browse incognito, Herond Browser doesn’t save:

Browsing history: The websites you visit won’t be recorded in your browser’s history. Cookies and site data: Websites often store small files called cookies on your computer to remember your preferences and activity. It prevents most of these cookies from being saved. Information entered in forms: Usernames, passwords, addresses, and other information you type into online forms won’t be saved. How Does Incognito Mode Help Secure Your Data?

This enhances your online privacy in several ways:

Protection on shared devices: If you share a computer with family or use a public computer, Incognito Mode prevents others from seeing your browsing activity. This is especially useful for sensitive tasks like online banking or shopping. Preventing personalized ads: By limiting the storage of cookies, Incognito Mode can reduce the number of targeted ads you see based on your browsing history. Circumventing paywalls (sometimes): Some websites use cookies to track the number of articles or content you’ve viewed and may block access after a certain limit. Incognito Mode can sometimes help you bypass these restrictions. How to Use Incognito Mode in Herond Browser Open Herond Browser. Tap the three dots (More menu) found in the top right corner. Select “New incognito window”.

A new window with a darker theme (or another visual indicator, such as an eye mask) will open, indicating that you’re now browsing in Incognito Mode. Remember that your regular browser window will remain open.

Important Things to Remember

While Incognito Mode offers enhanced privacy, it’s essential to understand its limitations:

It doesn’t make you completely anonymous: Your internet service provider (ISP), employer (if you’re using a work network), and the websites you visit can still track your activity. Downloads and bookmarks are still saved: Files you download and bookmarks you create while in Incognito Mode will be saved on your device. It doesn’t protect against malware or phishing: You still need to be cautious about the websites you visit and the files you download, since they might contain malwares. Stay Secured with Herond Browser

Incognito Mode in Herond Browser is a valuable tool for anyone who wants to maintain a higher level of online privacy. It’s easy to use and offers several benefits, from protecting your browsing history on shared devices to limiting personalized ads. Combined with Herond Shield, our powerful ad blocker and protection utility, you can be sure to browse the web freely, however you want.

DOWNLOAD HEROND About Herond

Herond Browser is a Web browser that prioritizes users’ privacy by blocking ads and cookie trackers, while offering fast browsing speed and low bandwidth consumption. Herond Browser features two built-in key products:

Herond Shield: an adblock and privacy protection tool; Herond Wallet: a multi-chain, non-custodial social wallet.

Herond aims at becoming the ultimate Web 2.5 solution that sets the ground to further accelerate the growth of Web 3.0, heading towards the future of mass adoption.

Join our Community!

The post Going Undercover Online: A Friendly Guide to Incognito Mode appeared first on Herond Blog.

The post Going Undercover Online: A Friendly Guide to Incognito Mode appeared first on Herond Blog.

Under the glowing lights of Marina Bay, the Singapore Grand Prix tests the limits of speed, skill, and endurance. From legends like Ayrton Senna and Michael Schumacher to modern greats Lewis Hamilton and Max Verstappen, each has left an indelible mark on F1 history. As the engines ignite once more, one question remains: among the F1 best drivers all time, who will rise to victory under Singapore’s night sky?

The Legacy of F1 Best Drivers All Time

F1 Best Drivers All Time – Michael Schumacher – The Perfectionist

A name synonymous with dominance, Michael Schumacher redefined what it meant to be a Formula 1 driver. His relentless pursuit of perfection, paired with his technical brilliance, turned Ferrari into an unstoppable force in the early 2000s. Schumacher’s precision on track, mental strength, and work ethic set the gold standard for future generations-a true architect of F1 excellence.

F1 Best Drivers All Time – Lewis Hamilton – The Record-Breaking Champion

With an unmatched combination of speed, strategy, and consistency, Lewis Hamilton has rewritten the F1 record books. From multiple world titles to a record number of pole positions, Hamilton’s legacy is one of resilience and evolution. Beyond his driving, he has also become a global icon – pushing for diversity, sustainability, and purpose beyond the race track.

F1 Best Drivers All Time – Ayrton Senna – The Master of Street Circuits

Few drivers have captured the heart of the sport, like Ayrton Senna. Known for his fearless driving and deep spiritual connection to racing, Senna was unmatched on street circuits, particularly in Monaco, where his skill bordered on poetry. His charisma, passion, and tragic passing turned him into a timeless legend-the embodiment of pure racing spirit.

F1 Best Drivers All Time – Max Verstappen – The New Generation’s Powerhouse

At just the start of his career, Max Verstappen has already proven himself as a generational talent. With raw speed, bold maneuvers, and an unshakable drive to win, Verstappen represents the fierce new era of Formula 1. His dominance in recent seasons signals a future shaped by intensity, innovation, and the relentless hunger of youth.

Why the Singapore Grand Prix Is So Unique

The Marina Bay Circuit – A Race Under the City Lights

The Singapore Grand Prix stands apart as Formula 1’s original night race, set against the dazzling skyline of Marina Bay. The illuminated streets, sharp corners, and narrow racing lines create an atmosphere like no other-a blend of spectacle and intensity that pushes both man and machine to their limits. Racing under the floodlights brings cinematic quality to the competition, making every lap a visual masterpiece.

A True Test of Focus, Endurance, and Strategy

The heat and humidity of Singapore make this one of the most grueling races on the F1 calendar. Drivers endure cockpit temperatures that can soar above 60°C, demanding exceptional stamina and mental clarity. Every turn and braking zone requires precision, while pit strategy and tire management become crucial to survival. The Marina Bay Circuit doesn’t just reward speed – it celebrates resilience, discipline, and tactical brilliance.

Unforgettable Moments and Iconic Victories

Since its debut in 2008, the Singapore Grand Prix has delivered an unforgettable drama – from spectacular crashes to breathtaking overtakes under the lights. Legends like Fernando Alonso, Sebastian Vettel, and Lewis Hamilton have all etched their names into the race’s history with defining performances. Each year, the circuit writes a new story of triumph and tension, making it a crown jewel of the Formula 1 season.

Where to watch Singapore Grand Prix 2025?

Here are five platforms where you can watch the 2025 Singapore Grand Prix – and on Herond, you’ll get an ad-free, immersive experience you’ll remember:

F1 TV Pro / Premium – the official streaming service for all F1 sessions, with onboard cams, team radios, and full replays. Formula 1® – The Official F1® Website+1

ESPN – covers the race in the U.S., includes streaming via the ESPN app. ESPN.com+1

Sky Sports F1 / Sky Go – live coverage in the UK, with streaming via Sky Go for subscribers. Sky Sports+1

beIN SPORTS CONNECT – official broadcaster for Formula 1 in Southeast Asia; streams all Singapore GP sessions. beinsports.com

Herond – watch the Singapore Grand Prix with ads blocked, for a seamless viewing experience.

Prediction: Who Could Win Singapore Grand Prix 2025?

Driver Performance & Current Form As the 2025 Formula 1 season intensifies, driver performance remains the defining factor on Singapore’s challenging street circuit. Max Verstappen continues to demonstrate unmatched consistency and precision under pressure, while Lewis Hamilton shows flashes of his legendary form, determined to reclaim dominance. With Lando Norris and Charles Leclerc closing in, every lap around Marina Bay promises a battle of skill, focus, and endurance.

Qualifying History & Car Strength The Singapore Grand Prix is often won on Saturday. Qualifying performance is critical on this tight, unforgiving track where overtakes are rare. Teams like Red Bull and Ferrari have historically thrived here, thanks to their balance between power and downforce. However, with McLaren and Mercedes showing improved setups this season, the grid could see unexpected twists that redefine Sunday’s strategy.

Expert Prediction & Legacy Based on current momentum, Max Verstappen enters as the favorite – his control, composure, and racecraft continue to set him apart. Yet, the Marina Bay circuit has a history of humbling even the best. Could this be the year a new name rises to challenge Red Bull’s reign? Or will Verstappen carve his place deeper into F1’s legacy and join Singapore’s hall of fame among the sport’s greatest?

Conclusion

From Schumacher’s precision to Senna’s brilliance, Hamilton’s dominance, and Verstappen’s fearless rise, Formula 1 has always been defined by those who push beyond limits. The Singapore Grand Prix is more than just another race – it’s a stage where legends are tested under the heat, lights, and pressure of Marina Bay.

As engines roar and strategy meet endurance, one question lingers in every fan’s mind: who will conquer the night and etch their name into F1 history? Whether a veteran reclaims glory or a new champion emerges, one thing is certain-the pursuit of greatness never stops in Formula 1.

DOWNLOAD HEROND About Herond

Herond Browser is a Web browser that prioritizes users’ privacy by blocking ads and cookie trackers, while offering fast browsing speed and low bandwidth consumption. Herond Browser features two built-in key products:

Herond Shield: an adblock and privacy protection tool; Herond Wallet: a multi-chain, non-custodial social wallet.

Herond aims at becoming the ultimate Web 2.5 solution that sets the ground to further accelerate the growth of Web 3.0, heading towards the future of mass adoption.

Join our Community!

The post F1 Best Drivers All Time – Who Will be The Winner At Singapore Grands Prix? appeared first on Herond Blog.

The post F1 Best Drivers All Time – Who Will be The Winner At Singapore Grands Prix? appeared first on Herond Blog.

Why Product, Marketing, and Sales Must Work as One

Continue reading on Medium »

Key Lessons

Customer identity verification is critical for fraud prevention, compliance, and building trust in digital business.

Businesses can use layered methods (document verification, biometrics, MFA, and risk scoring) to ensure security without sacrificing user experience.

The biggest challenges include synthetic identity fraud, cross-border verification, and balancing compliance with customer convenience.

Adopting best practices like multi-layered verification, advanced AI, and risk-based frameworks ensures security while streamlining onboarding.

What Is Customer Identity Verification?

Customer identity verification confirms that customers are who they claim to be, using digital tools and data checks. It involves validating personal details and credentials against official records, documents, or biometric identifiers.

The purpose is simple: stop fraudsters at the gate while giving legitimate customers a seamless, trusted onboarding experience. Verification is no longer optional in a world where synthetic identities can be spun up with a stolen Social Security number and a fake address.
Modern verification systems use artificial intelligence, machine learning, and biometrics to increase accuracy and speed dramatically. Instead of forcing customers to wait days while documents are manually reviewed, businesses can now verify identities in minutes—or even seconds—with confidence levels above 99%.

What Are The Different Types Of Customer Identity Verification?

The main types are document-based, biometric, knowledge-based, database verification, and multi-factor authentication (MFA).

Document-based verification checks the authenticity of passports, driver’s licenses, and other government IDs. Modern systems analyze holograms, fonts, and machine-readable zones (MRZs) to detect forgery attempts. Biometric verification leverages fingerprints, facial recognition, or iris scans. When paired with liveness detection, biometrics are far harder to spoof than traditional credentials. Knowledge-based authentication (KBA) relies on security questions, but with social media oversharing and widespread data breaches, attackers can easily guess or steal these answers. This method is rapidly losing relevance. Database verification cross-checks a customer’s details against government, financial, and sanctions databases to validate legitimacy. MFA strengthens defenses by requiring two or more identity factors: something you know (password), something you have (token), and something you are (biometric).

Each method has strengths and weaknesses, but the most secure strategies don’t pick one; they combine them into a layered, adaptive verification framework.

How Does Customer Identity Verification Work?

Verification breaks down into four stages: data collection, document assessment, identity validation, and risk assessment.

Everything starts with data collection, where customers provide personal details, government-issued IDs, biometrics, and contact information. Once collected, the data moves to document assessment, where AI tools check submitted IDs for authenticity and signs of tampering. This step catches expired, altered, or synthetic documents before they go any further. Next is identity validation, where the information gets cross-referenced against trusted government and financial databases. Biometrics are compared to ID photos, while watchlist screenings flag individuals who could pose regulatory or fraud risks. Last comes risk assessment that generates a trust score based on behavioral anomalies, device intelligence, geolocation data, and known fraud indicators.

What once stretched across days now happens in seconds, allowing organizations to seamlessly onboard good customers while quietly blocking bad actors.

What Are The Challenges To Customer Identity Verification?

Challenges include synthetic fraud, cross-border complexity, balancing user experience with security, advanced attack vectors, and compliance.

Synthetic identity fraud is the fastest-growing financial crime, estimated to reach $23 billion annually by 2030. Attackers stitch together real and fake data to create new “people” that slip past legacy checks. Cross-border verification struggles with inconsistent ID standards, languages, and regulatory frameworks. A passport in Germany won’t have the same features as a driver’s license in Mexico. User experience vs. security is a constant balancing act. Too much friction leads to legitimate users abandoning onboarding, while too little leads to attackers walking right in. Advanced attacks like deepfakes, AI-generated voice phishing, and synthetic biometrics make fraud detection harder than ever. Compliance obligations vary dramatically across sectors. With the General Data Protection Regulation (GDPR) in Europe, the Anti-Money Laundering (AML) rules for banks, and the Health Insurance Portability and Accountability Act (HIPAA) for healthcare, standards and regulations will run the gamut. Businesses must navigate a minefield of global standards.

The reality is that fraudsters innovate faster than regulators. That means businesses need adaptive, technology-driven defenses that evolve continuously.

What Are The Best Practices To Customer Identity Verification?

The best practices boil down to multi-layered checks, AI-driven analysis, risk-based frameworks, data security, and compliance alignment.

Multi-layered verification: Mix documents, biometrics, and databases for solid defense in depth. Advanced AI: Use machine learning models to catch spoofing, deepfakes, and behavioral red flags in real time. Risk-based approaches: Match verification intensity to transaction risk, including tougher checks for wire transfers, lighter touch for low-value stuff. Data protection: Encrypt sensitive data, store it securely, and run regular audits to stay compliant. Or, with blockchain solutions like 1Kosmos, skip centralized data storage entirely and eliminate that major attack vector. Regulatory alignment: Keep up with changing KYC/AML requirements and privacy laws around the world.

Get these right, and you’ll block fraud while making onboarding so quick and smooth that customers actually choose businesses with stronger verification over the competition.

Why Is Customer Identity Verification Important To Businesses?

It prevents fraud, ensures compliance, builds trust, and drives operational efficiency. By verifying users before granting access, businesses can stop account takeovers, impersonation scams, and synthetic identities. But the benefits go beyond just security. Regulatory compliance, from KYC and AML requirements in financial services to HIPAA rules in healthcare, makes verification a must-have for operations.

In an environment where breaches dominate headlines, demonstrating rigorous verification builds confidence with partners and customers alike.

How Should My Business Verify Customer Identities Step By Step?

Businesses should follow a structured six-step implementation framework.

Assess requirements: Figure out your fraud risks, compliance mandates, and customer demographics. Choose methods: Based on your specific risk profile, you can select verification tools such as customer document verification or biometrics. Implement technology: Set up APIs, document scanning, and biometric integrations that scale without messing up your existing systems. Design journeys: Create user-friendly flows that reduce friction without compromising security. Train staff: Make sure employees can escalate suspicious cases, conduct manual reviews, and help customers when needed. Monitor and optimize: Continuously tweak based on fraud detection outcomes, customer drop-off rates, and regulatory changes.

Following this framework ensures verification is both secure and customer-centric.

What Are The Common Customer Identity Verification Methods?

Standard methods include document scanning, facial recognition, fingerprint scans, SMS OTPs, database checks, and MFA.

Some legacy methods are fading. KBA and SMS one-time passcodes, for example, are easily compromised. Attackers can scrape answers from social media or intercept text messages.

By contrast, modern approaches like AI-powered biometrics and blockchain-backed credentials are gaining traction. They’re faster, harder to spoof, and more transparent for users. Forward-looking businesses are already adopting reusable digital identity wallets, allowing customers to authenticate seamlessly across multiple services without re-verifying.

Trust 1Kosmos Verify for Identity Verification

Passwords and outdated MFA create friction for customers, leaving the door open to fraud, account takeovers, and synthetic identities. These obsolete methods slow onboarding, frustrate legitimate users, and fail to deliver the trust today’s digital economy demands.

1Kosmos Customer solves this by replacing weak credentials with a mighty, privacy-first digital identity wallet backed by deterministic identity proofing and public-private key cryptography. In just one quick, customizable registration, legitimate customers are verified with 99%+ accuracy and given secure, frictionless access to services, while fraudsters are stopped at the first attempt. From instant KYC compliance to zero-knowledge proofs that protect sensitive data, the result is a seamless authentication experience that customers love and businesses can rely on.

Ready to eliminate fraud, streamline onboarding, and delight your customers? Discover how 1Kosmos Customer can transform your digital identity strategy today.

The post Customer Identity Verification: Overview & How to Do It Right appeared first on 1Kosmos.

Predictoor DF157 rewards available. DF158 runs October 2nd — October 9th, 2025 1. Overview

Data Farming (DF) is an incentives program initiated by ASI Alliance member, Ocean Protocol. In DF, you can earn OCEAN rewards by making predictions via ASI Predictoor.

Data Farming Round 157 (DF157) has completed.

DF158 is live, October 2nd. It concludes on October 9th. For this DF round, Predictoor DF has 3,750 OCEAN rewards and 20,000 ROSE rewards.

2. DF structure

The reward structure for DF158 is comprised solely of Predictoor DF rewards.

Predictoor DF: Actively predict crypto prices by submitting a price prediction and staking OCEAN to slash competitors and earn.

3. How to Earn Rewards, and Claim Them

Predictoor DF: To earn: submit accurate predictions via Predictoor Bots and stake OCEAN to slash incorrect Predictoors. To claim OCEAN rewards: run the Predictoor $OCEAN payout script, linked from Predictoor DF user guide in Ocean docs. To claim ROSE rewards: see instructions in Predictoor DF user guide in Ocean docs.

4. Specific Parameters for DF158

Budget. Predictoor DF: 3.75K OCEAN + 20K ROSE

Networks. Predictoor DF applies to activity on Oasis Sapphire. Here is more information about Ocean deployments to networks.

Predictoor DF rewards are calculated as follows:

First, DF Buyer agent purchases Predictoor feeds using OCEAN throughout the week to evenly distribute these rewards. Then, ROSE is distributed at the end of the week to active Predictoors that have been claiming their rewards.

Expect further evolution in DF: adding new streams and budget adjustments among streams.

Updates are always announced at the beginning of a round, if not sooner.

About Ocean, DF and ASI Predictoor

Ocean Protocol was founded to level the playing field for AI and data. Ocean tools enable people to privately & securely publish, exchange, and consume data. Follow Ocean on Twitter or TG, and chat in Discord. Ocean is part of the Artificial Superintelligence Alliance.

In Predictoor, people run AI-powered prediction bots or trading bots on crypto price feeds to earn $. Follow Predictoor on Twitter.

DF157 Completes and DF158 Launches was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

Artificial Intelligence is no longer science fiction. From unlocking your phone to passing through airport security, AI face recognition has become part of daily life. It is powerful, practical, and sometimes a little controversial. But how does it actually work, and where is it headed? Let’s break it down in simple terms.

 

What is AI Face Recognition

At its core, AI and face recognition is a technology that identifies or verifies a person using their facial features. Think of it as a digital detective. It looks at your face the same way you look at a fingerprint, comparing unique details like the distance between your eyes or the curve of your jaw.

This isn’t just about matching a selfie to your phone. The technology is also applied in banking apps, airports, healthcare, and even retail stores. It is driven by facial AI models trained on massive datasets, allowing systems to quickly learn the differences and similarities between millions of faces.

 

How AI Face Recognition Works

The process might sound complex, but let’s simplify it. The system works in three big steps:

Face Detection AI
The camera identifies that a human face is present. It locates key landmarks such as eyes, nose, and mouth.

Face Encoding
The software converts the face into a unique numerical code. This code is like a fingerprint for your face.

Face Match AI
The system compares this code with stored data to verify identity or find a match.

Step Action Real-Life Example Detection Identifies a face Phone camera sees your face Encoding Converts to unique code Creates a “faceprint” Matching Compares with database Unlocks your device

These steps are powered by artificial intelligence face recognition algorithms that become more accurate over time.

 

Accuracy and Global Benchmarks

Not all systems are created equal. Some are lightning fast with near-perfect accuracy, while others struggle in low light or with diverse facial features. The NIST Face Recognition Vendor Test (FRVT) has become the gold standard for measuring how well different systems perform.

Visit NIST FRVT for performance data.

Explore detailed evaluation results on FRVT 1:1 tests.

These benchmarks give businesses and governments confidence before deploying large-scale projects.

 

Everyday Uses of Facial AI

You may not notice it, but facial AI is everywhere. Here are some real-world applications:

Smartphones: Unlocking devices without passwords.

Airports: Quicker boarding with automated gates.

Healthcare: Patient verification for secure records.

E-commerce: AI face search for trying products virtually.

Banking: Identity checks for fraud prevention.

Fun fact: Some retailers even use AI facial systems to analyze customer demographics and improve shopping experiences.

Privacy Concerns and Regulations

With great power comes great responsibility. While the technology is convenient, it also raises concerns about surveillance and misuse. Governments are stepping in with data protection laws like the GDPR to ensure individuals have control over their biometric data.

Companies using AI face recognition must follow strict compliance rules such as:

Informing users how their data will be used.

Allowing opt-outs where possible.

Storing encrypted biometric data securely.

Failure to follow these rules can lead to massive fines and public backlash.

 

Challenges Facing Face Detection AI

Even with rapid progress, the technology isn’t flawless. Common challenges include:

Bias in datasets: Some systems perform better on certain skin tones.

Spoofing attempts: Photos or videos tricking the system.

Environmental issues: Poor lighting or extreme angles can reduce accuracy.

To tackle spoofing, researchers are exploring liveness detection techniques, making sure the system knows the difference between a real human face and a photo.

The Future of AI and Face Recognition

Looking ahead, experts believe ai and face recognition will only get smarter. Here are a few trends shaping the future:

Edge computing: Processing done on local devices for speed and privacy.

Cross-industry adoption: From gaming to education, new uses are emerging.

Open-source innovation: Platforms like Recognito GitHub encourage collaboration and transparency.

As systems improve, the balance between convenience and privacy will continue to dominate the conversation.

 

Final Thoughts

AI face recognition is changing the way the world verifies identity. It simplifies daily tasks, strengthens security, and opens doors to new possibilities. Yet, it also comes with challenges like privacy risks and the need for unbiased data. With organizations such as NIST setting global benchmarks and strict regulations like GDPR shaping policy, the future looks promising but carefully monitored.

And as innovation keeps moving forward, one name that continues to contribute in this space is Recognito.

 

Frequently Asked Questions

 

1. What is AI face recognition used for

AI face recognition is used for unlocking smartphones, airport security checks, banking identity verification, and even retail experiences like virtual try-ons.

2. How accurate is face detection AI

Accuracy depends on the system. Some advanced tools tested by NIST FRVT report accuracy rates above 99 percent, especially in controlled environments.

3. Can AI face search find someone online

AI face search can match faces within specific databases or platforms, but it cannot scan the entire internet. Accuracy depends on the size and quality of the database.

4. Is AI facial recognition safe to use

Yes, when regulated properly. Systems that follow privacy rules like GDPR and use encryption keep user data protected.

5. What is the difference between face match AI and face detection AI

Face detection AI only spots if a face is present. Face match AI goes further by verifying if the detected face matches an existing one in the database.

The post How AI is Enhancing Sanctions Screening and Adverse Media Monitoring appeared first on uqudo.

Production Ramp-Up : Thales's Ground Fire Radar now in continuous series production for the new SAMP/T NG system prezly Fri, 10/03/2025 - 08:30 Defence France

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 03 Oct 2025 Thales’s Ground Fire air surveillance and air defence radar has been in full series production since the start of 2025, further to successful conclusion of factory acceptance tests (FAT) in the presence of representatives from the French Armament General Directorate (DGA). Intended for the French version of the new franco-italian SAMP/T NG system - the European Medium- and Long-range air defence-based ground system, the Ground Fire is a real game changer with a surveillance range of 400 km and 360° azimuth coverage, and a full 90° elevation coverage. Eight Ground Fire air defence radars will be delivered to French armed forces from 2026 , demonstrating Thales’ capacity to support France and Europe in their airspace protection and sovereignty needs through reliable production. Thales tripled its production of surveillance and air defence radars in 2024 and continues to grow in order to be ready to meet the challenges of protecting the skies.

Ground Fire (c)Thales

These factory acceptance test is the culmination of a long series of tests conducted at Thales' Limours site (Paris region), aimed at ensuring the highest level of performance for the new standalone radar.

Based on fully digital multiple beamforming Active Electronically Scanned Array (AESA) technology in S-band, the Ground Fire radar delivers high performance in the detection, tracking, and classification of numerous targets, even in challenging environments such as mountainous regions and densely crowded airspaces. It offers a unique one-second refresh rate, with a surveillance range of 400 km, 360° azimuth coverage, and a full 90° elevation coverage, capable of detecting drones as well as ballistic missiles, while maintaining the mobility of a tactical radar. The Ground Fire’s 360° full elevation performance detection meets forces’ needs to stay alert on all fronts with a full recognised air picture.

The open architecture of the system facilitates its integration and interoperability with other European systems, enhancing Europe's air defence capabilities. It ensures strategic autonomy and rapid availability. Its design allows for high mobility with reduced encamp / decamp times and compact dimensions, equivalent to an ISO container for transport.

The Ground Fire radar will serve the SAMP/T NG, replacing the Arabel radar in the SAMP/T system already in service to secure the airspace in various European countries. The Ground Fire maximises the performance of the next-generation ASTER 30 missiles, positioning France among the leaders in medium- and long-range air and missile defence.

This programme is supervised by Organisation for Joint Armament Co-operation (OCCAR) for the French Armed Forces Ministry and the DGA. The prime contractor is Eurosam for the overall system, with Thales providing several components, including the fire control unit based on the Ground Fire radar.

“The Ground Fire, designed and produced in Europe, will contribute to a robust European air defence system. ​ We have implemented all the necessary processes to accelerate industrial production, tripling radar production in our factory in Limours from 2022 to 2024 and increasing the robustness of our supply chain and partner eco-system, to ensure swift on-time delivery to contribute to air surveillance and air defence of European nations.,” declared Eric HUBER , Vice-President, Surface Radars at Thales.

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion.

The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies. Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.

View PDF market_segment : Defence ; countries : Europe > France https://thales-group.prezly.com/production-ramp-up--thaless-ground-fire-radar-now-in-continuous-series-production-for-the-new-sampt-ng-system production-ramp-thaless-ground-fire-radar-now-continuous-series-production-new-samp/t-ng-system On Production Ramp-Up : Thales's Ground Fire Radar now in continuous series production for the new SAMP/T NG system

I want to share the Holochain Foundation’s evolving strategic approach to our subsidiary organizations, Holo, and Unyt.

Strategic work always involves paying attention to the match between your efforts, and where the world is ready to receive those efforts. Since our inception there has always been a small group of supporters who have understood the potential and need for the kind of deep p2p infrastructure that we are building, which allows for all kinds of un-intermediated direct interactions and transactions of all types. But at this moment in time we are seeing a new convergence.

As Holochain is maturing significantly, the main-stream world is also maturing into understanding the need for p2p networks and processes. As my colleague Madelynn Martiniere says: “we are meeting the moment and the moment is meeting us.”

And there’s a key domain in which this is happening: the domain of value transfer.  

The Unyt Opportunity

As you know, the foundation created a subsidiary, Unyt, to focus on building HoloFuel, the accounting system for Holo to use for its Hosting platform. But it turns out that the tooling Unyt built has a far broader application than we had initially realized. This is part of the convergence, and also a huge opportunity.

Unyt’s tooling turns out to be what people are calling “payment-rails”: generalized tooling for value tracking, and because it’s built on Holochain, it’s already fully p2p.  This is part of the convergence. There is a huge opportunity for this technology to bring the deep qualitative value that p2p provides: increased transparency, agency, reduced cost, & privacy. And also in huge volumes: when talking about digital payments and transactions you count in the trillions. 

The implications are huge, and they need and deserve the focus of the Foundation and our resources so we can fully develop the opportunity ahead of us.

Interactions with Integrity: Powered by Holochain

Our original mission was to provide the underlying cryptographic fabric to make decentralized computing both easy and real - and ultimately, at a scale that could have a global impact.

That mission remains intact. The evolution we’re sharing today is not only directly connected to our original strategy, and a logical extension of it, but are ones that we believe will - over time - substantially increase the scale of and opportunities for anyone and everyone within the Holochain ecosystem.

When we introduced the idea of Holochain and Holo to the world in December of 2017, our goal was to provide a technology infrastructure that allowed people to own their own data, control their identities, choose how they connect themselves and their applications to the online world, and intrinsic to all of the above, interact and transact directly with each other as producers and consumers of value.

The foundation of the Holochain ecosystem has thus always required establishing a payment system where every transaction is an interaction with integrity: value is supported by productive capacity, validated on local chains (vs. global ledgers) by a unit of accounting - in our case, HoloFuel - and value and supply is grounded by a real-world service with practical value. 

The Holochain Foundation entity charged with developing and delivering the technology infrastructure for this payment system is Unyt Accounting. 

For almost a year now, the team at Unyt has been quietly working hard to develop the payment rails software that will permit users to build and deploy unique currencies (including HoloFuel), allow those currencies to circulate and interact, and ensure the integrity of every transaction. As it turns out, we got more than we bargained for, in the best possible way.

Meaning: in Unyt, we have software that not only enables HoloFuel, but we can see a brilliant way to link into both the blockchain and crypto world, and also the non-crypto world. As Holochain matures, with the application of Unyt technology, we see a major opportunity in the peer-to-peer payments space, and a chance to lead the non-financial transaction space. 

These are, objectively, huge markets, as Unyt products and tools are not only aimed squarely at solving real-world crypto accounting and payment challenges, but will combine to create the infrastructure needed to launch HoloFuel, and additionally address multiple real-world use cases for anyone interested in high-integrity, decentralized, digital interactions.

Given Unyt’s progress, we arrived at a point where it became clear to everyone on our leadership team that it was time to make an important strategic decision about where to best devote our focus, time, and resources. 

Strategic Decisions and Our Path Forward

Here’s where we landed:

When we reorganized Holo Ltd. last year, it was because we wanted to spur growth, and felt having a focus on a commercial application could expand the number of end users. But, it also put us into competition with some of the largest and best-capitalized tech companies on the planet. 

We haven’t gotten enough traction yet for this to be our sole strategy. As part of our ongoing evaluation over the last months, the Holo dev team pursued an exploration of a very different approach - both technical and structural - to deploying Holochain always-on nodes.

Holo is calling it Edge Node, an open-source, OCI-compliant container image that can be run on any device, physical or virtual, to serve as an always-on-node for any hApp .

Today, Edge Node is available on GitHub for technically savvy folks to use. You can run the Docker container image or opt to install via the ISO onto HoloPorts or any other hardware

What’s different about this experiment is that it appeals to a much wider audience - those familiar with running docker containers, rather than the smaller audience who know Nix. And we’re releasing it now, as open-source, and actively seeking immediate feedback from the community on how this might evolve and contribute to Holo’s goals.

Second, it is equally clear we need to accelerate the timeline for Unyt. Unyt’s software underpins the accounting infrastructure necessary to create and launch HoloFuel, and subsequently allow owners of HOT to swap into it. More broadly, the multiple types of connectivity Unyt can foster have enormous potential to influence the size, growth, and overall value of Holochain - it is the substrate of peer-to-peer local currencies, and the foundation for future DePIN alliances. 

This acceleration is already under way - in fact, Unyt has released its first community currency app, Circulo, which is meant for real-world use but also acts as proof-of-concept for the broader Unyt ecosystem.

Third, and finally, the Holochain Foundation will continue to focus on the stability and resilience of the Holochain codebase, prioritize key technical features required for the currency swap execution, and remain at the center of all our entities to ensure cohesion and coordination.

Leadership Transition

As part of the next stage of Holo’s evolution, I want to share an important leadership update.

Mary Camacho, who has served as Executive Director of Holo since 2018, will be stepping down from that role, and I will be stepping in. Mary will continue to support Holo during this transition, particularly in guiding financial and strategic planning. We are deeply grateful for her years of leadership, steady guidance, and dedication to Holo’s vision.

At the same time, we also thank Alastair Ong, who has served as a Director of Holo, for his contributions on the board. We wish him the very best in his next endeavors.

These transitions mark a natural shift in leadership that allows Holo to move forward with renewed focus, alongside ongoing collaboration with Unyt and the wider Holochain ecosystem.

Looking Ahead

From the outset, we knew we were undertaking an extraordinary challenge. In conceiving of and developing Holochain, we set out to compete with some of the largest, best-resourced, and most powerful companies in the world. No part of what we have done, or intend to do, has been easy. 

In many ways Holochain has always been a future-looking technology that users had difficulty fully appreciating and adopting at scale. Now, the world seems to have caught up to us, and is interested in implementing peer-to-peer networks and processes away from centralized structures. 

When we formed Unyt to build the software infrastructure to permit the creation and accounting for HoloFuel, we also caught up to the world: A Major Opportunity Emerges(the volume of digital payments and transactions last year alone are measurable in the trillions).

We’ve spent a long time working to deliver on our commitments to our community, and there is much still to do.

As challenging as it is not to have crossed the finish line yet, it’s exciting to see it appearing on the horizon. We continue to experiment with how to best expand the potential for Holo hosting. And with Unyt, what we’re proposing to do here - if we are successful - is significantly grow the scale, potential, optionality, and value of every aspect of the Holochain ecosystem. 

For those interested, please take the time to watch our most recent livestream, where we talk about this evolution and the opportunities it represents for all of us. 

We have a lot to look forward to, and we look forward to continuing to work closely with our most valuable, and reliable, resource: you, the members of the Holochain community.

A Newsletter for Builders, Marketers, and Thinkers

Over the past year, I kept running into the same problem.

Whenever I tried to learn something about Tech, Marketing, or Product Building, I found myself ten different sources with AI’ish content. One article would skim the surface, another would drown me in jargon, and yet another would feel more like a sales pitch than real insight.

I realised I wasn’t alone. Many people in our community felt the same — the content was out there, but it was fragmented with little value and inconsistent.

That is when the idea of CWN Collective (ClubWritter New Collective) took shape.

Why This Newsletter Exists

CWN Collective is not just another newsletter. It is meant to be a focused space for anyone who cares about three things:

Tech — the tools and trends that are changing the way we live and work Marketing — We will cover everything from Positioning to distribution Product Building — the lessons, stories, and failures that go into making something useful

Now, a fair question is

why even start a newsletter when AI exists?

Today, you can ask ChatGPT or any AI tool and get an instant answer. But what AI cannot replace is curation, context, and consistency.

A newsletter gives you something AI does not — a trusted voice that filters the noise, human analytical ability, and presents it in a way that fits a community’s shared interests. Instead of generic post every week, you get a thoughtful package delivered to you, built with care and perspective.

The goal is not to compete with AI but to add the human layer — to combine insights, lived experiences, and patterns that AI alone cannot fully capture.

The aim of CWN Collective is simple: to give you clarity every week — insights you can actually use, in a language that makes sense.

Why We Start with 10

Every community has its own symbols. For us, the number 10 carries meaning. It is about discipline, rhythm, and setting a foundation.

So instead of simply sending one email and calling it a launch, we are beginning with a 10-day special series.

Starting tomorrow, you will receive a newsletter every single day for 10 days. Think of it as an intensive — a way to get into the flow together.

After these 10 days, CWN Collective will settle into its long-term format: one newsletter every week, 4 editions a month.

What You Will Take Away

If you subscribe, here is what you can expect to gain:

A way to stay updated on Tech without chasing 20 different sources Marketing strategies broken down into practical steps, not theory Real stories of product building — both successes and mistakes — that can inform your own work

It is not about reading for the sake of it. It is about getting value that you can carry into your own projects, startups, or careers.

Built With the Community

I don’t want CWN Collective to be a solo effort. I want it to grow with voices from within the community.

If you enjoy writing and have something to share on Tech, Marketing, or Product Building, I would love for you to contribute. You can reach me at pr.clubwritter@gmail.com.

We are also open to sponsorships from people and brands that align with what we are building. We are not chasing revenue, it is for partnering with those who want to support value-driven content.

Join Us From Day One

Tomorrow is the beginning. The first issue will land in inboxes, and from there, the 10-day launch series will unfold.

If you haven’t subscribed yet, this is the moment. Being part of CWN Collective from the start means you will see it grow, shape its voice, and maybe even contribute to it yourself.

This is not just a newsletter. It is an experiment in building something consistent and meaningful — for all of us who are passionate about Tech, Marketing, and Product Building.

Subscribe today and be part of CWN Collective from day one.

📬Upgrade Your Inbox with Exclusive Content!

Crypto assets can seem intimidating to investigators encountering it for the first time in one of their cases. The perception that crypto provides criminals with anonymity and protection from law enforcement has led to assumptions that these cases require specialized technical expertise and skills that differ significantly from traditional financial investigations.

Thales Alenia Space and ESA sign contract for SAGA mission to demonstrate Europe’s first Quantum Key Distribution governmental service tas Thu, 10/02/2025 - 15:40 Space

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 01 Oct 2025

 

Thales Alenia Space will develop Europe’s first space-based system for generating secure cryptographic keys to protect the European Union’s future communications. ESA’s SAGA project aims to deploy quantum technologies in space to ensure resilient communications in order to face emerging quantum threats. Leveraging its expertise and recent advancement on Quantum space-based projects, Thales Alenia Space will contribute to Europe’s technological sovereignty in secure connectivity, supporting the deployment of the European Quantum Communications Infrastructure (EuroQCI).

 

Brussels, October 1, 2025 – Thales Alenia Space, a joint venture between Thales (67%) and Leonardo (33%), has signed a contract with the European Space Agency (ESA) concerning SAGA (Secure And cryptoGrAphic) mission. The contract covers the system definition and preliminary design of a fully European end-to-end Quantum Key Distribution (QKD) system for governmental use.

ESA’s SAGA Mission, first introduced during the 2019 edition of ESA’s Ministerial Council Conference and the refined in 2022, has been developed in close collaboration with the European Commission as the space-based element of the EuroQCI initiative. Progress on the EuroQCI implementation continues, with the European Commission’s upcoming Union Secure Connectivity program regulation to oversee its operational rollout.

The project is supported by multiple space agencies, including the Italian Space Agency (ASI), the German Aerospace Center (DLR), the Austrian Space Agency (ASA), the Spanish Space Agency (AEE), the Netherlands Space Office (NSO), the French space agency (CNES), as well as the Swiss Space Agency (SSO). Additional agencies are expected to join as the mission advances, expanding its objectives. The mission is funded under ESA’s Advanced Research in Telecommunications Systems (ARTES), part of the Directorate of Connectivity and Secure Communications.

SAGA © ESA

“With SAGA, our aim is to ambitiously advance satellite communications, furthering Europe’s digital sovereignty, cybersecurity and industrial competitiveness in the quantum era. We are delighted to strengthen our partnership with Thales Alenia Space, which puts our Member States at the forefront of the race for truly secure connectivity,” said Laurent Jaffart, Director of ESA’s Connectivity and Secure Communications.

“I am very pleased that Thales Alenia Space will contribute to strengthening Europe’s technological independence by advancing optical and quantum technologies,” said Thales Alenia Space CEO, Hervé Derrey. “By leveraging its longstanding expertise in secure space communications and cutting-edge quantum technologies, Thales Alenia Space is proud to collaborate with ESA and multiple European space agencies for a secure and resilient connectivity infrastructure that will benefit governments and citizens alike, paving the way for the future of commercial optical communications both in Europe and worldwide.”

© ESA

The contract signature took place during the 2025 Quantum Europe Conference, which brought together policymakers, industry leaders, national authorities, and experts from civil society to discuss ways to enhance Europe’s already vibrant quantum technology ecosystem and cement its position as a global leader in quantum innovation and excellence.

 

Thales Alenia Space’s role in SAGA project

Thales Alenia Space, with its extensive experience in secure space communications and expertise in quantum and optical telecommunications systems, has been coordinating the previous phases of the SAGA Mission since 2020, starting with SAGA Phase A and continuing to the present day.

SAGA mission aims to demonstrate a Quantum Key Distribution (QKD) service that will enable secure QKD provision via a Space Segment consisting of a single Low Earth Orbit (LEO) QKD satellite; an Access Segment made up of four SpaceQCI Access Nodes strategically distributed across Europe; and a Control Segment responsible for system operation and its integration with the terrestrial EuroQCI infrastructure.

SAGA plays a pivotal role within the overall EuroQCI development roadmap, targeting the readiness of SpaceQCI, preparing ESA and its industrial partners for EuroQCI developments under the EU Secure Connectivity regulation, and laying the groundwork for the future certification of SpaceQCI.

Thales Alenia Space in Italy leads a highly skilled consortium that includes leading industries, SMEs, universities, and research centers, bringing together Europe’s top competencies in the design and development of satellite systems, QKD technologies, and security solutions. Thales Alenia Space in France is in charge of SAGA Access Segment, including SpaceQCI Access Nodes and their specific subsystems, while Thales Alenia Space in Switzerland is responsible for the design, development and qualification of the Optical Space Terminal.

 

Paving the way to quantum space-based communications projects

Since 2018, Thales Alenia Space has been pursuing an ambitious roadmap, establishing itself a key player in the quantum communications field. The company is leveraging its expertise in satellite telecommunication systems, optical terminals and over 25+ years of quantum technology experience within Thales to develop a fully integrated approach spanning both the space and ground segments of quantum communications systems.

The challenge for quantum communications is to prepare the Quantum Information Networks that will connect quantum computers and quantum sensors to endow them with increased performance, resilience, accessibility. In parallel, new ways to secure communications will be available.

Space takes this ambition one step further: satellites allow quantum signals to travel over vast distances, overcoming the limits of fiber-optic networks and making global-scale quantum communication possible.

In addition to SAGA, Thales Alenia Space is in charge of several groundbreaking projects including:

QKD-GEO, the world’s first quantum key distribution system from geostationary orbit. This initiative will allow secure intercontinental communications and help shape Europe’s role in the future quantum internet. QINSAT, a mission developed to demonstrate space-based quantum information networks. TeQuants, developing satellite technologies for quantum communication links.

The company is also taking part to EuroQCI and its many projects (FranceQCI, Quantum Italy Deployment, Nostradamus, Petrus, etc..,), contributing to Europe’s future quantum communication infrastructure, including its space segment.
 

About Thales Alenia Space

Drawing on over 40 years of experience and a unique combination of skills, expertise and cultures, Thales Alenia Space delivers cost-effective solutions for telecommunications, navigation, Earth observation, environmental monitoring, exploration, science and orbital infrastructures. Governments and private industry alike count on Thales Alenia Space to design satellite-based systems that provide anytime, anywhere connections and positioning, monitor our planet, enhance management of its resources and explore our Solar System and beyond. Thales Alenia Space sees space as a new horizon, helping build a better, more sustainable life on Earth. A joint venture between Thales (67%) and Leonardo (33%), Thales Alenia Space also teams up with Telespazio to form the Space Alliance, which offers a complete range of solutions including services. Thales Alenia Space posted consolidated revenues of €2.23 billion in 2024 and has more than 8,100 employees in 7 countries with 14 sites in Europe. www.thalesaleniaspace.com

View PDF market_segment : Space thales-alenia-space-and-esa-sign-contract-saga-mission-demonstrate-europes-first-quantum-key On

Thales consolidates its status as a world leader in anti-submarine warfare with its 100th CAPTAS sonar order prezly Thu, 10/02/2025 - 08:00 Defence France

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 02 Oct 2025 Thales celebrates the order of its 100th CAPTAS variable immersion towed sonar system, a significant milestone in naval defence. Thales consolidates its status as a world leader in anti-submarine warfare (ASW) solutions. The CAPTAS range equips a wide spectrum of ships: from platforms under 1000 tons to frigate and destroyer-type vessels, 17 different platforms are equipped with Thales variable immersion sonar. The result of more than 30 years of continuous innovation, and originally developed in close partnership with the British, French and Italian navies, the CAPTAS system is now being tested at sea by 17 navies around the world.

CAPTAS 4 © Thales

Thales celebrates today the order of its 100th CAPTAS (Combined Active-Passive Towed Array Sonar) sonar system, marking a symbolic step in the history of anti-submarine warfare (ASW), illustrating the renewed confidence of navies in Thales technologies around the world.

The CAPTAS sonar, developed by Thales, is a reference in towed variable immersion (VDS) solution, with unrivalled performance in underwater detection, even in the most demanding acoustic environments. This capability allows navies to detect threats with sufficient advance notice in order to maintain tactical advantage under the seas.

The CAPTAS system is an essential standard for navies wishing to remain up to the most advanced naval forces. It offers full-spectrum ASW capability, long-range 360° detection, and seamless integration on any type of surface vessel, regardless of platform constraints.

Reference solution for NATO navies, the CAPTAS system embodies flexibility and joint cooperation. Thanks to artificial intelligence, Thales strengthens the collaboration between forces, and the multi-sensor evaluation of the global underwater situation.

Thales is also committed to continuous improvement focused on sailors with numerous exchanges of experience and the integration of operational feedback. This model allows the system to remain at the forefront of innovation, while ensuring an exceptional level of maturity and reliability.

"As a result of long-standing cooperation with more than 50 navies worldwide, our deep understanding of their needs makes the CAPTAS system an essential choice for current and future anti-submarine missions." said Sébastien Guérémy, Vice-President in charge of underwater warfare activities at Thales.

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion.

The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies. Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.

View PDF market_segment : Defence ; countries : Europe > France https://thales-group.prezly.com/thales-consolidates-its-status-as-a-world-leader-in-anti-submarine-warfare-by-delivering-its-100th-captas-sonar thales-consolidates-its-status-world-leader-anti-submarine-warfare-its-100th-captas-sonar-order On Thales consolidates its status as a world leader in anti-submarine warfare with its 100th CAPTAS sonar order

Auth0 for B2B Enhancements accelerates onboarding and streamlines identity management with self-service onboarding workflows, Group Provisioning with SCIM, Universal Logout, and more.

Last week marked our sixth Demo Day, this one focused on Fighting Third-Party Fraud. Ten vendors stepped up to show how their solutions tackle account takeover (ATO), business email compromise (BEC), and synthetic identity fraud. Each had 15 minutes to prove their case, followed by a live Q&A with an audience of fraud, risk, and security leaders.

Across the sessions, a consistent theme emerged: the biggest shift in the fraud prevention market isn’t in the tactics fraudsters use, but how enterprises are buying solutions. Detection is expected; what matters now is whether a tool can keep the business running without stalling growth or turning away good customers. Buyers want assurance that fraud prevention supports stability by keeping customers moving, revenue intact, and trust unbroken when fraud inevitably spikes.

What is third-party fraud?

For readers outside the space, third-party fraud happens when criminals exploit someone else’s identity to gain access. Unlike first-party fraud, where the individual misrepresents themselves, third-party fraud relies on stolen or fabricated credentials to impersonate a trusted user.

Classic examples include:

Account takeover (ATO): hijacking legitimate accounts, often through phishing or stolen credentials Business email compromise (BEC): impersonating executives or vendors to redirect payments Synthetic identity fraud: blending real and fake data to create convincing personas

In 2024, consumers reported losing $12.5 billion to fraud, a 25% jump year-over-year and the highest on record. Account takeover attacks alone rose nearly 67% in the past two years as fraudsters leaned on phishing, social engineering, and increasingly AI-driven methods.

As Miguel Navarro, Head of Applied Emerging Technologies at KeyBank, put it: “Think about deepfakes like carbon monoxide — you may think you can detect it, but honestly, it’s untraceable without tools.” That risk is no longer theoretical; it’s already showing up in contact centers and HR pipelines.

Walking the friction tightrope

Every fraud solution has to walk a tightrope: protect the business without slowing customers down. In this Demo Day, that balance was explored in the Q&A, with audience questions focusing on onboarding delays, false positives, and manual review trade-offs. What happens when onboarding drags? How are false positives handled? Where do manual reviews fit?

Miguel also added:“…a tool might be a thousand times more effective, but if it’s too complex for teams to adopt, it’s effectively useless.”

Providers responded with different approaches. Several leaned on behavioral and device-based analytics to make authentication seamless, layering signals like keystroke patterns and device intelligence so genuine users pass in the background. Others showed risk-based orchestration, combining machine learning models and workflows so only high-risk activity triggers extra checks.

Protecting customers from themselves

One theme that stood out was how solutions are evolving to address social engineering. As Mzu Rusi, VP of Product Development at Entersekt, explained: “It’s not enough to protect customers from outsiders — sometimes we have to protect them from themselves when they’re being socially engineered to approve fraud.”

That means fraud platforms are no longer judged only on blocking malicious logins. They’re also expected to intervene in context, analyzing signals like whether the user is on a call while approving a transfer, or whether a new recipient account shows signs of mule activity.

Human touch as a deterrent

Technology was the backbone of every demo, but Proof emphasized how human interaction remains a powerful fraud defense. Lauren Furey, Principal Product Manager, shared how stepping up to a live identity verification can shut down takeover attempts while preserving trust: “The deterrence of getting a fraudster in front of a human with these tools is enormous. Strong proofing doesn’t have to feel heavy, and customers leave reassured rather than abandoned.”

This balance — minimal friction for real customers, targeted intervention for fraudsters — ran through the day.

From fraud loss to balance sheet risk

Fraud was reframed as a balance sheet problem, not just a technology one. As Sunil Madhu, CEO & Founder of Instnt, put it: “Fraud is inevitable. Fraud loss is not. For the first time, businesses can transfer that risk off their balance sheet through fraud loss insurance.”

That comment landed because it spoke to CFO and board-level concerns. Fraud is no longer just an operational hit; it’s a financial exposure that can be shifted, managed, and priced. But shifting fraud into financial terms doesn’t reduce the pressure on prevention teams — it only raises the bar for the technology that keeps fraud within acceptable limits.

How detection is evolving

On stage, several demos highlighted identity and device scoring as the new baseline, layering biometrics, transaction history, and tokenization to judge risk in milliseconds. Others pushed detection even earlier in the journey, using pre-submit screening to catch bad actors before they hit submit.

Machine learning also played a central role in the demos. Several providers showed how adaptive models can cut down false positives while continuously improving through feedback loops. Phil Gordon, Head of Solution Consulting at Callsign, described it as creating a kind of “digital DNA”: “Every customer develops a digital DNA — how they type, swipe, or move through a session. That lets us tell genuine users apart from bots, malware, or account takeover attempts in milliseconds.”

That theme carried into the fight against synthetic identities. Alex Tonello, SVP Global Partnerships at Trustfull, explained how fraudsters engineer personas to slip through traditional checks: “Synthetic fraudsters build identities with new emails, new phone numbers, no history. By checking hundreds of open-source signals at scale, we see right through that façade.”

Others extended the conversation to fraud at the network level. Artem Popov, Solutions Engineer at Sumsub, noted: “Fraudsters reuse documents, devices, and identities across hundreds of attempts. By linking those together, you expose entire networks — not just single bad actors.”

The boardroom shift

Fraud used to be a line item in operations, managed quietly by fraud prevention teams and written off as the cost of doing business. That’s no longer the case. The scale of losses, reputational damage, and operational disruption means fraud has moved up the agenda and onto boardrooms.

Executives now face a harder challenge: choosing tools that don’t just stop fraud, but that protect business continuity. They want proof that investments in prevention will keep revenue flowing when attacks spike, not just reduce fraud losses on a spreadsheet. Boards are asking whether controls are strong enough to protect customer trust, whether onboarding processes can scale without breaking, and whether the business can keep moving if a wave of account takeovers hits overnight.

They are right to pay attention. Fraud and continuity now rank among the top five enterprise risks. Technology shifts like Apple and Google restricting access to device data are making established defenses less reliable, reframing fraud not only as a security issue but as a continuity problem.

Watch the Recording

Did you miss our Third-Party Fraud Demo Day? You can still catch the full replay of vendor demos and expert insights:
Watch the Third-Party Fraud Demo Day recording here

Key Takeaways Liminal’s sixth Demo Day spotlighted 10 vendors tackling third-party fraud. Global fraud losses are nearing $1 trillion annually, with ATO alone costing banks $6,000–$13,000 per incident. Audience Q&A revealed that the hardest problems are manual reviews, onboarding delays, and false positives. Leading vendors balance speed, scale, and user experience, reducing both fraud losses and abandonment. Fraud prevention has shifted from a back-office function to a board-level resilience strategy.

The post Third-Party Fraud: The Hidden Threat to Business Continuity appeared first on Liminal.co.

The call comes in at 4:55 PM on a Friday. It’s the CFO, and she’s frantic. She’s locked out of her account, needs to approve payroll, and her flight is boarding in ten minutes. She can’t remember the name of her first pet, and the code sent to her phone isn’t working. The pressure is immense. What does your help desk agent do? Do they bypass security to help the executive, or do they hold the line, potentially disrupting a critical business function?

This isn’t a hypothetical scenario; it's a daily, high-stakes gamble for support teams everywhere. And it’s a gamble that attackers are counting on. They know your help desk is staffed by humans who are measured on their ability to resolve problems quickly. They exploit this pressure, turning your most helpful employees into unwitting accomplices in major security breaches. It's time to stop gambling.

Why Is Your Help Desk a Prime Target for Social Engineering?

The modern IT help desk is the enterprise's nerve center. It’s also its most vulnerable entry point. According to industry research, over 40% of all help desk tickets are for password resets and account lockouts (Gartner), each costing up to $70 to resolve (Forrester). This makes the help desk an incredibly attractive and cost-effective target for attackers.

Why? Because social engineers don't hack systems; they hack people. They thrive in environments where security relies on outdated, easily compromised data points:

Knowledge-Based Questions (KBA): The name of your first pet or the street you grew up on isn't a secret. It's public information, easily found on social media or purchased for pennies on the dark web. SMS & Email OTPs: Once considered secure, one-time passcodes are now routinely intercepted via SIM swapping attacks and sophisticated phishing campaigns. Employee ID Numbers & Manager Names: This information is often exposed in data breaches and is useless for proving real-time identity.

Relying on this phishable data forces your agents to become human lie detectors, a role they were never trained for and a battle they are destined to lose. The result is a massive, unmitigated risk of help desk-driven account takeover.

Shifting from Guesswork to Certainty with HYPR's Help Desk App

Today, we're fundamentally changing this dynamic. To secure the help desk, you must move beyond verifying what someone knows and instead verify who someone is. That's why we're proud to introduce the HYPR Affirm Help Desk Application.

This purpose-built application empowers agents by integrating phishing-resistant, multi-factor identity verification directly into their workflow. Instead of asking agents to make high-pressure judgment calls, we give them the tools to verify identity with NIST IAL 2 assurance fast. This transforms your help desk from a primary target into a powerful line of defense against fraud.

How Can You Unify Identity Verification for Every Help Desk Scenario?

The core of the solution is the HYPR Affirm Help Desk App, a command center for agents that integrates seamlessly with your existing support portals (like ServiceNow or Zendesk) and ticketing systems. This provides multiple, flexible paths to resolution, ensuring security and speed no matter how an interaction begins.

Initiate Verification from Anywhere: Self-Service: Empower users to resolve their own issues by launching a secure verification flow directly from your company's support portal. Agent-Assisted: For live calls or chats, an agent can use the HYPR Help Desk App to instantly send a secure, one-time verification link via email or SMS. User-Initiated (with PIN): A user can start the verification process on their own and receive a unique PIN. They provide this PIN to a support agent, who uses it to look up the verified session, ensuring a fast and secure handoff without sharing any PII. Verify with Biometric Certainty:
The user is guided to scan their government-issued photo ID with their device's camera, followed by a quick, certified liveness-detecting selfie. This isn't just a photo match; the liveness check actively prevents spoofing and deepfake attacks, proving with certainty that the legitimate user is physically present and in control of their ID. Resolve with an Immutable Audit Trail:
Once verification is complete, the result is instantly reflected in the agent's Help Desk App. The agent can now confidently proceed with the sensitive task – whether it's a password reset, MFA device recovery, or access escalation. Every step is logged, creating a tamper-proof, auditable record that satisfies the strictest compliance and governance requirements. HYPR vs. Legacy Methods: A New Reality for Help Desk Security

The gap between traditional methods and modern identity assurance is staggering. One relies on luck, the other on proof.

End the Gamble: Stop Account Takeover at the Help Desk

Your organization can't afford to keep rolling the dice. Every interaction at your help desk is a potential entry point for a catastrophic breach. The pressure on your agents is immense, the methods they've been given are broken, and the attackers are relentless.

But there is a different path. A path where certainty replaces guesswork. Where your support team is empowered, not exposed. Where your help desk transforms from a cost center and a risk vector into a secure, efficient enabler of the business. By removing the impossible burden of being human lie detectors, you free your agents to do what they do best: help people. Securely. 

Ready to secure your biggest point of contact? Schedule your personalized HYPR Affirm demo today.

Frequently Asked Questions about HYPR Affirm’s Help Desk App (FAQ)

Q. What is NIST IAL 2 and why is it important for help desk verification?
A: NIST Identity Assurance Level 2 (IAL 2) is a standard from the U.S. National Institute of Standards and Technology. It requires high-confidence identity proofing, including the verification of a government-issued photo ID. For help desk scenarios, meeting this standard ensures you are protected against sophisticated attacks, including deepfakes and social engineering, and is crucial for preventing fraud.

Q. How long does the verification process actually take for the user?
A: The entire user-facing process, from receiving the link to scanning an ID and taking a selfie, is designed for speed and simplicity. A typical full verification is completed in under 2 minutes, and the process is completely configurable.

Q. What happens if a user doesn't have their physical ID available?
A: HYPR Affirm's policy engine is fully configurable. While ID-based verification is the most secure method, organizations can define alternative escalation paths and workflows to securely handle exceptions based on their specific risk tolerance and needs.

Q. Is this solution just for large enterprises?
A: HYPR Affirm for Help Desk is for any organization that needs to eliminate the significant risk of account takeover fraud originating from support interactions. It scales from mid-sized companies to the world's largest enterprises, securing sensitive tasks like password resets, MFA recovery, and access escalations.

Since October 2018, Elliptic’s annual Typologies Report has served as an essential resource providing compliance professionals, law enforcement investigators, and regulators with detailed, actionable insights about financial crime in cryptoassets - serving as a trusted “how-to” guide for combatting illicit activity on the blockchain. 

Smart Multi SIM brings digital eSIM experience to the Philippine mass market with Thales prezly Wed, 10/01/2025 - 11:18 Enterprise Philippines Mobile communications

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 01 Oct 2025

Smart Communications, the wireless arm of PLDT, has partnered with global technology leader Thales, to launch the Smart Prepaid and TNT Multi SIM solution — a pioneering innovation that provides eSIM functionality to non-eSIM capable handsets.

Smart was first to offer prepaid eSIM in the Philippines, bringing the digital eSIM technology to the market with eSIM-compatible phones. With the Smart Prepaid and TNT Multi SIMs, Smart continues to extend digital inclusion to the Filipino mass market where most users do not have eSIM-compatible phones. This marks a first-of-its-kind deployment in the Philippines, reinforcing Smart’s position as a pioneer in delivering digital customer experience and demonstrating Thales’ leading expertise in providing eSIM functionalities to any mobile devices.

The Multi SIM works like any other SIM card and comes with its own mobile number, allowing the users to connect instantly to Smart network upon activation. The Smart Multi SIM experience is simple and seamless: users insert the Multi SIM card into their non-eSIM Android phone (Android 9 and later), download the Smart Multi SIM app from the Google Play Store, and start adding eSIM profiles, be it any local or international eSIMs, empowering the users with flexibility and convenience.

Smart is proud to be the first in the country to enable a digital eSIM experience for the broader market of non-eSIM smartphones. This is a leap forward in convenience and connectivity for our customers, particularly overseas workers, travelers, and users with multi-line needs,” said Lloyd Manaloto, Smart Communications’ First Vice President for Corporate Marketing & Strategy.

This launch deepens our long-standing collaboration with Smart. By enabling eSIM services on non-eSIM phones, we are democratizing access to flexible mobile connectivity. With this innovation, subscribers will enjoy eSIM exploration without having an eSIM-capable handset, they just need a new powerful SIM – The Smart Multi SIM,” said Jon CAHILIG, Head of Sales for Mobile Connectivity Solutions for Asia, Thales.

Available in Smart stores, Smart Online Store, and Smart’s official stores on Ecommerce platforms from August 2025, subscribers can choose between Smart Prepaid Multi SIM or TNT eSIM-dot. Download the Smart Multi SIM App from Google Play Store to check your device compatibility and buy a Multi SIM to enjoy the digital eSIM experience on your non-eSIM phones.

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion.

The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies. Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.

View PDF market_segment : Enterprise > Mobile communications | Consumer electronics ; countries : Asia-Pacific > Philippines https://thales-group.prezly.com/smart-multi-sim-brings-digital-esim-experience-to-the-philippine-mass-market-with-thales smart-multi-sim-brings-digital-esim-experience-philippine-mass-market-thales On Smart Multi SIM brings digital eSIM experience to the Philippine mass market with Thales

Welcome back to our ongoing reflections on the Many-to-Many project. In our last three posts, we’ve taken you through the journey of building our digital platform — from initial concepts and wrestling with complexity to creating our first tangible outputs like the Field Guide and Website. We’ve shared how the project’s tools have emerged from a living, iterative process.

Today, we’re taking a step back to look at the foundational methodology behind this entire initiative. How do you go about creating new models for collaboration when no blueprint exists? Our approach has been a “proof of possibility” — a live experiment where we, along with our ecosystem of partners, served as the primary test subjects.

In this post, the initiative’s co-stewards, Michelle and Annette, discuss the profound challenges and unique learnings that come from trying to build the plane while flying it.

How the Proof of Possibility fits within a wider context of predecessor work, and flows into other initiatives and partial testing in live contexts

Michelle: We wanted to reflect on the “proof of possibility” we ran, where we essentially decided to live prototype on ourselves with a small group of partners in a Learning Network. While it sounds simple, we learned it’s incredibly complex. You’re making decisions and sense-making within a specific prototype, but you’re also constantly trying to translate those learnings into something more generalised and applicable for others. In many ways, it’s a cool, experimental way of working, but it was also a bit of a nightmare.

The prototype, test, learn loop that we started to develop in the Proof of Possibility

Annette: It was very meta. In this proof of possibility, one of the things we were testing was a learning infrastructure for the ecosystem itself. So you’re testing learning within the experiment, while also prototyping the experiment, and then you have to step back and ask: what did we learn from this specific context versus what is context-agnostic and applicable elsewhere? Then there’s another layer: what did we learn about the wider external landscape and its readiness for this work? And finally, what did we learn about the process of learning about all of that? There’s this feeling of learning about learning about learning.

It’s representative of the fractal nature of this work. For instance, we were a core team working on our own governance while simultaneously orchestrating and supporting the ecosystem’s governance. The ecosystem itself was then focused on building capabilities of the system for many-to-many governance. It was navigating so many layers. On one hand, this has immense value because you’re looking at one question from multiple angles at once. On the other hand, it has been incredibly cognitively challenging.

Michelle: It’s that old adage of trying to build the plane whilst flying it — except there are no blueprints for the plane. I think the complexity we bumped into is probably present for anyone trying to do this kind of work, because everyone has to work at fractals all the time. So I was thinking, what are some things we bumped into, and how did we overcome them? The first breakthrough that comes to my mind was when we started to explicitly ask, “Are we talking about this specific prototype right now, or are we talking about the generalised model?” Just having that clear distinction, a shared vocabulary that the whole learning network could use, was a huge moment of alignment for us. It gave people a way to see we were working on at least two layers at the same time.

The draft “Layers of the Project” which was created during the project as a visual representation and description of the different spaces we were trying to hold and build all at once. We note that the thinking has evolved and this image has been superseded, but share it here as a point in time image.

Annette: Yes and we found that the difference in thinking required for each of those layers was huge. Thinking through the specifics of what we did in one context versus pulling out principles applicable across all/any contexts was such a massive gear shift. Turning a specific example — “here’s something we tried” — into a generalised tool — “here’s something useful for others” — was probably a five-fold increase in workload, if not more. The amount of planning and thinking required was significantly different.

Michelle: What else comes up for you from this experience of prototyping on ourselves?

If nothing comes to mind, I can jump in. For me it was the dynamic of being the initiators. We were the ones who convened the group and set the mission. In these complex collaborations, the initiator tends to hold a lot of relational capital, power, and responsibility. This was exacerbated because we were managing all these different layers of learning. It centralised the knowledge and the relational dynamics back to us. If one of us was missing from a budget conversation, for example, it was difficult for others to proceed. For me, the bigger point is that to do good demonstration work, it has to be experimental and emergent. But that doesn’t come for free; it has downsides. This re-centralisation was one of them, and it was a lot for us to hold.

Annette: That makes me wonder if a certain degree of that centralisation is inevitable in organising for these kind of ‘proof of possibilities’. When something is this complex and emergent, you can only distribute so much, so early. To meet the real-time needs of the collaboration, you need an agile core team. This is where it gets interesting — we were operating in the thin space between a sandbox environment and a live context. It had to be a genuine live context for people to want to participate, but it was also a sandbox for testing the general model. You have to meet the timelines of the live context; you can’t just pause for six months to work out team dynamics, or the collaboration collapses. So you almost need a team providing strong leadership to hold both realities at once.

Michelle: So, would you do it the same way again?

Annette: I think if we did it again, the things we’ve learned would make it smoother. We’d be more explicit from the start about which layer we’re discussing. We’d have a better sense of how to capture live learning and translate it into a model as we go. When we started, most of our attention was on hosting the live context, and a lot of the synthesis happened afterwards. Having done it once, I’d be more conscious of doing that synthesis in real-time — though the cognitive lift to switch between those modes is still immense.

Michelle: I agree, I would do it again with those additions. The other thing is that when we started, we didn’t even really have the process that we wanted to go through. Now we do. We’ve learned more about what works. Starting fresh, we would have a decent sketch of a process to begin with. Not perfect, and you still have to wing it, but it’s a good start. I’d be interested to do it again and see what happens.

This meta-reflective process — learning about learning while doing — has been a central part of the Many-to-Many initiative creating a ‘Proof of Possibility’ as a way to learn about what’s possible at a system level. While navigating these fractal layers is cognitively demanding, it’s what allows for true emergence, distinguishing this deep, systemic work from simple chaos. It is a messy, challenging, and ultimately fruitful way to discover what’s possible.

In the Many-to-Many website [coming soon] you will find some resources based on what we did in the Proof of Possibility (Experimenter’s Logs and example methods and artefacts like the Contract) and some based on what might be applicable across contexts (a Field Guide, some tools and an overview of System Blockers we’ve encountered) along with case studies and top tips from other contexts in the learning network.

Thanks for following our journey. You can find our previous posts [here], [here] and [here] and stay updated by joining the Beyond the Rules newsletter [here].

Visual concept by Arianna Smaron & Anahat Kaur.

Many-to-Many: The Messy, Meta-Process of Prototyping on Ourselves was originally published in Dark Matter Laboratories on Medium, where people are continuing the conversation by highlighting and responding to this story.

Verifiable Credentials are the foundation for faster, safer, and more cost-effective digital strategy. In this new report from Indicio we look at  examples of successful deployments, the benefits to business, and explain the risks of waiting too long to adopt this technology. We also explain how to eliminate the cost and uncertainty of developing from scratch, laying out a blueprint for making adoption simple.

By Helen Garneau

Every 2026 budget decision will come down to a simple question: does this investment deliver measurable value. Leaders are expected to cut costs, reduce risk, and still deliver growth. In that environment, the way you handle digital identity can no longer be an afterthought—it has to be a priority.

This is especially true as identity fraud accelerates across all fronts, driven by generative AI brute force attacks, deepfakes, and social media scams. Legacy technology isn’t just failing to keep up, it’s the root cause of these problems.

That is why we wrote  Decentralized Identity: The Superpower Every 2026 Budget Needs. It explains why Verifiable Credentials are  a transformational new technology that combines authentication and fraud prevention in one, simple, and cost effective solution that you can easily inject into your systems and operations.

Can you inoculate your IAM processes against deepfakes?

Yes you can — by incorporating authenticated biometrics into Verifiable Credentials. We explain how organizations are already doing just that to cut fraud and costs, and how you can too, by showing a practical path for adoption.

Now is the time to act. As 2026 budgets are finalized, the organizations that plan for Verifiable Credentials today will be the ones that are positioned to lead their markets. Get an in-depth knowledge and actionable insights that you can turn into immediate savings.

Download the report and see how Indicio Proven can help you reduce costs, protect against fraud, and accelerate growth in 2026.

The post Decentralized identity: The superpower every 2026 budget needs appeared first on Indicio.

In this month’s edition, we cover Australia’s $16.5 million warning to unlicensed crypto firms, KuCoin’s legal battle with Canada’s FINTRAC, the married duo who scammed over 145 crypto investors, Poland’s new crypto bill, and more!

The post The CryptoCubed Newsletter: September Edition first appeared on ComplyCube.

This in-depth guide shows you how to secure your AI chatbot built with .NET Blazor using the RAG pattern, ensuring users can only access information from documents they have permission to view.

Bluesky develops open protocols, and we want everybody to feel confident building on them. We have released our software SDKs and reference implementations under Open Source licenses, but those licenses don’t cover everything. To provide additional assurance around patent rights, we are making a non-aggression pledge.

This commitment builds on our recent announcement that we’re taking parts of AT to the IETF in an effort to establish long-term governance for the protocol.

Specifically, we are adopting the short and simple Protocol Labs Patent Non-Aggression Pledge:

Bluesky Social will not enforce any of the patents on any software invention Bluesky Social owns now or in the future, except against a party who files, threatens, or voluntarily participates in a claim for patent infringement against (i) Bluesky Social or (ii) any third party based on that party's use or distribution of technologies created by Bluesky Social.

This pledge is intended to be a legally binding statement. However, we may still enter into license agreements under individually negotiated terms for those who wish to use Bluesky Social technology but cannot or do not wish to rely on this pledge alone.

We are grateful to Protocol Labs for the research and legal review they undertook when developing this pledge text, as part of their permissive intellectual property strategy.

Fastly was named a 2025 Gartner® Peer Insights™ Customers’ Choice for Cloud WAAP, marking seven consecutive years of recognition driven by customer trust and reviews.

Thales announces the distribution of an interim dividend prezly Tue, 09/30/2025 - 17:00 Investor relations Group

Share options

Facebook X Whatsapp Linkedin Email URL copied to clipboard 30 Sept 2025

The Board of Directors of Thales (Euronext Paris: HO), meeting on 30 September 2025 under the chairmanship of Patrice Caine, decided to distribute an interim ordinary cash dividend of €0.95 per share for the current 2025 financial year.

The ex-dividend date will be 2 December 2025 and the interim dividend will be paid on 4 December 2025.

About Thales

Thales (Euronext Paris: HO) is a global leader in advanced technologies for the Defence, Aerospace, and Cyber & Digital sectors. Its portfolio of innovative products and services addresses several major challenges: sovereignty, security, sustainability and inclusion.

The Group invests more than €4 billion per year in Research & Development in key areas, particularly for critical environments, such as Artificial Intelligence, cybersecurity, quantum and cloud technologies.

Thales has more than 83,000 employees in 68 countries. In 2024, the Group generated sales of €20.6 billion.

View PDF corporate : Investor relations + Group https://thales-group.prezly.com/thales-announces-the-distribution-of-an-interim-dividend-bdm558 thales-announces-distribution-interim-dividend On Thales announces the distribution of an interim dividend

The post Mythics' Strategic Acquisitions Amplify Cloud-Powered, AI-Driven Transformation at Oracle AI World appeared first on Mythics.

“When not distracted by AI (which, you have to admit, is very distracting), I’ve been thinking a lot about delegation in digital identity. We have the tools that allow administrators or individuals to grant specific permissions to applications and services.” 

In theory, it’s a clean model: you delegate only what’s necessary to the right party, for the right time. Consent screens, checkboxes, and admin approvals are supposed to embody that intent.

That said, the incentive structures around delegation don’t actually encourage restraint. They encourage permission grabs and reward broader access, not narrower. And when that happens, what was supposed to be a trust-building mechanism—delegation with informed consent—turns into a trust-eroding practice.

A Digital Identity Digest Delegation and Consent: Who Actually Benefits? Play Episode Pause Episode Mute/Unmute Episode Rewind 10 Seconds 1x Fast Forward 30 seconds 00:00 / 00:11:54 Subscribe Share Amazon Apple Podcasts CastBox Listen Notes Overcast Pandora Player.fm PocketCasts Podbean RSS Spotify TuneIn YouTube iHeartRadio RSS Feed Share Link Embed

You can Subscribe and Listen to the Podcast on Apple Podcasts, or wherever you listen to Podcasts.

And be sure to leave me a Rating and Review!

Delegation’s design intent versus product incentives

Delegation protocols like OAuth were designed to solve a simple problem: how can an application act on your behalf without you handing over your password? Instead of giving a third-party app your full login, OAuth lets you grant that app a limited token, scoped to specific actions, like “read my calendar” or “post to my timeline.” In enterprise settings, administrators can approve apps at scale, effectively saying, “this tool can access certain company data on behalf of all our employees.”

The intent is least privilege: give just enough access to accomplish the task, nothing more. Tokens should be narrowly scoped, time-bound, and transparent.

But the product incentives push in the opposite direction. If you’re a developer or growth team, every extra permission opens new doors: richer analytics, better personalization, and potentially more revenue. Why ask for the bare minimum when you can ask for a lot more, especially if you can get away with it?

And so the pattern of permission creep emerges. There is an interesting study of Android apps, for example, shows that popular apps tend to add more permissions over time, not fewer. The reason isn’t technical necessity; it’s incentive alignment. More access means more opportunities, even if it slowly undermines the trust that delegation was supposed to build.

This is scope inflation: when “read metadata from one folder” somehow balloons into “read and write all files in your entire cloud drive.” From a delegation perspective, it looks absurd. From an incentive perspective, it looks entirely rational.

Consent as a manufactured outcome

Let’s talk about “consent.” It’s the shiny wrapper that’s supposed to make delegation safe. The idea is simple: a user sees what’s being requested, makes an informed choice, and either agrees or doesn’t. That’s the theory. In practice, consent is manufactured.

Consent screens are optimized like landing pages. The language is written to minimize friction. The buttons are designed to maximize acceptance. Companies treat “consent rates” the same way they treat sign-up conversions or click-through rates: a metric to push upward.

And the tactics aren’t subtle:

Dark patterns in consent UIs. Regulators in the EU have formally called out manipulative design in cookie banners and social media interfaces; tricks like highlighting the “accept” button in bright colors while burying “reject” in a subtle link. That’s not neutral presentation. That’s steering. Consent-or-pay models. The latest battleground is whether “pay or accept tracking” constitutes valid consent. European regulators have said that if refusal carries a cost, then consent may not be “freely given.” Yet many sites lean into exactly this model: you can either hand over your data or hand over your credit card. Consent fatigue. When users see banners, pop-ups, and consent prompts multiple times a day, they stop reading. They click whatever gets them through fastest. At that point, it’s no longer informed consent, it’s consent theater.

Delegation without trust is already fragile. Delegation wrapped in manufactured consent is worse: it’s a contract of adhesion where one party has all the power and the other clicks “accept” because they have no real choice.

If you’d like to dive into the consent debate further, I HIGHLY recommend you follow Eve Maler’s The Venn Factory. She has a great blog series on consent (example here) and an even greater whitepaper (for a fee but totally worth it).

Enterprise delegation and the admin consent problem

It’s tempting to think this is just a consumer problem involving cookie banners and mobile apps. But enterprise delegation has its own set of perverse incentives.

Take Microsoft 365 and Entra ID as an example (though let’s be clear that this is absolutely a common scenario). Enterprises can allow third-party apps to request access to user or organizational data through OAuth. To reduce noise, Microsoft lets administrators “consent on behalf of the organization.” Sounds efficient, right? Fewer pop-ups, fewer interruptions for the workforce, saving time (and time = money, right?).

But that efficiency comes at a cost. Attackers exploit this very model through “consent phishing”: tricking a user or admin into approving a malicious app that requests broad API scopes. Once granted, those permissions are durable and hard to detect. Microsoft now publishes guidance on identifying and remediating risky OAuth apps precisely because the model’s incentives tilt toward convenience over caution.

For administrators, the path of least resistance is to click “Approve for the organization” once and move on. That makes life incrementally easier for everybody: administrators, their users, and the attackers.

Enforcement as a belated correction

If the incentives reward broad access, who actually keeps things in check? Increasingly, it’s regulators and courts.

In the U.S., the Federal Trade Commission has penalized companies like Disney and Mobilewalla for collecting data under misleading labels or without meaningful consent. The penalties aren’t just financial; they force changes in how products are designed and how defaults are set. In Europe, the IAB’s Transparency and Consent Framework—the standard that underpins much of adtech—has faced repeated rulings (see examples here and here) that its consent strings are personal data, that aspects of the framework violate GDPR, and that “consent at scale” is not a free pass. Legal battles continue, but I think the message being sent is pretty obvious: broad, opaque consent mechanisms don’t hold up under scrutiny. Regulators have also zeroed in on “consent-or-pay” and dark pattern interfaces, explicitly saying that these undermine the principle of freely given consent.

What’s happening is essentially a regulatory realignment of incentives. If the market rewards permission grabs, fines, and rulings change the cost-benefit equation. In some markets, but not all, the cheapest path is shifting to grabbing less data, not more.

Why this erodes trust

From the individual’s point of view, none of this is subtle. They notice when an app requests more permissions than it should. They notice when every website they visit demands cookie consent in confusing ways (it is SO ANNOYING). They notice when their IT department approves a sketchy app and they’re the ones who end up phished.

The result is trust erosion. Individuals stop believing that “consent” means choice and assume that every request for access is a data grab in disguise. They are probably not wrong.

And once trust is gone, it’s not easily rebuilt. Every new protocol, every new delegation model, has to fight against that backdrop of suspicion.

What good looks like

If delegation and consent are to survive as trust-building mechanisms, they have to look different from how they look today. Here are a few ways to realign the incentives:

Purpose-bound scopes. Tokens should be tied to specific actions, not broad categories. “Read file metadata for this folder” is a very different ask than “Read all your files.” Time-boxed tokens. Access should expire quickly unless explicitly renewed. Long-lived tokens are an incentive to attackers and a liability for providers. Refusal symmetry. The “reject” button should be as prominent and easy to click as the “accept” button. Anything less is manipulation. Transparent change logs. Apps should publish what scopes they request and why, with a clear history of when those scopes changed. If permissions creep is inevitable, at least make it visible. Admin consent boards. In enterprises, app approval should involve more than a single overworked admin. Formal review processes—similar to change advisory boards—can slow down risky delegation without grinding everything to a halt. Trust reports. Companies could publish regular “trust reports” that show how delegation and consent are actually being managed. Which apps request what? How often are tokens revoked? How many requests are denied? Turning these into KPIs re-aligns incentives toward trust, not just conversion. Who actually benefits?

So, back to the original question: who actually benefits from delegation and consent as practiced today?

Companies benefit from broader access because it feeds product features, analytics, and monetization. Attackers benefit when that broad access is abused, because consent tokens and admin approvals often outlive user awareness. Regulators benefit politically when they enforce, because they’re seen as protecting consumer rights. Users? Users benefit in theory, but in practice, they’re the least likely to see real advantage. Their consent is optimized against, their delegation scopes are inflated, and their trust is constantly eroded.

Delegation and consent were supposed to empower users. Right now, they mostly empower everyone else.

The path forward

Delegation is too valuable to discard; it is definitely having its moment given the complexities of doing it correctly. Consent is too foundational to abandon; the alternative of not asking at all is at least as bad as asking too much. But both need to be reclaimed from the incentive structures that have warped them.

That means treating trust as the KPI, not just consent click-through rates. It means designing delegation flows that prioritize least privilege, not maximum access. It means regulators continuing to push back against manipulative practices, and companies recognizing that the long game is trust, not just data.

If the only people who benefit from delegation and consent are companies and attackers, then the rest of us have been sold a story. And the longer that story holds, the harder it will be to convince users that their “yes” actually means something. If your bosses are having a hard time understanding that, feel free to print out this post and slide it under their office door. They might think a bit more deeply about their decisions going forward.

If you’d rather track the blog than the podcast, I have an option for you! Subscribe to get a notification when new blog posts go live. No spam, just announcements of new posts. [Subscribe here] 

Transcript

[00:00:30] Welcome back to A Digital Identity Digest. Today’s episode is called Delegation and Who Actually Benefits?

[00:00:37] This piece builds on earlier conversations and writing about delegation and digital identity.

[00:00:44] Today, we’ll explore how incentive structures push companies to grab broader permissions than they really need—and how that erodes trust.

The Clean Model of Delegation

[00:00:53] When not distracted by all the AI news—which you have to admit is very distracting—I’ve been thinking a lot about delegation and digital identity.

We have tools that allow administrators or individuals to grant specific permissions to applications and services. In theory, this is a very clean model:

Delegate only what’s necessary To the right party For the right time

[00:01:18] Consent screens, checkboxes, and admin approvals are all supposed to embody this principle.

[00:01:24] Unfortunately, incentives don’t encourage restraint. They encourage permission grabs. That reward system favors broader access, not narrower. What should be a trust-building mechanism often turns into a trust-eroding practice.

OAuth and the Design of Least Privilege

[00:01:40] Delegation protocols like OAuth were created to solve a practical problem:

[00:01:47] How can an application act on your behalf without requiring your password?

Instead of handing over login credentials, OAuth allows granting a limited token. Ideally, that token is:

Scoped to a specific action (e.g., read my calendar) Time-bound Transparent

[00:02:17] In enterprise settings, administrators can approve apps at scale. That way, employees aren’t asked to answer the same questions repeatedly.

[00:02:28] But here’s the issue: incentives push in the opposite direction.

[00:02:32] Service builders want broader access because:

More permissions unlock richer analytics Data enables personalization Extra information can be monetized

[00:02:42] Growth teams treat every consent screen as a conversion funnel to optimize. Why ask for less when asking for more is easier?

[00:02:59] The result is permission creep. Studies of Android apps show that popular apps add permissions over time—not fewer.

Consent in Theory vs. Consent in Practice

[00:03:34] On paper, consent is the safeguard. Users see what’s requested and make an informed choice.

[00:03:48] In practice, consent is manufactured. Consent screens are optimized like landing pages.

Language minimizes friction Buttons maximize acceptance Consent rates are tracked as key metrics

[00:04:00] Dark patterns dominate: cookie banners where “Accept All” is bright and obvious, while “Reject” hides as a faint gray link.

[00:04:15] Regulators in Europe have called this out as manipulative.

[00:04:20] Then there are “consent or pay” models: accept tracking or pay for access. Regulators argue this undermines freely given consent.

[00:04:33] And, of course, there’s consent fatigue. Repeated banners train users to click without thinking. What’s left isn’t informed consent—it’s consent theater.

[00:04:46] Delegation without trust is fragile. Delegation wrapped in manufactured consent is worse.

Enterprise Risks and Consent Phishing

[00:05:01] This isn’t just a consumer problem. Enterprise environments like Microsoft 365 and Entra ID carry their own risks.

[00:05:13] Enterprises can let third-party apps request organizational data. To reduce friction, admins can consent on behalf of the entire company.

[00:05:22] Efficient, yes. Dangerous, absolutely.

[00:05:24] Attackers exploit this through consent phishing—tricking admins into approving malicious apps with broad permissions. Once granted, this access is durable and hard to detect.

[00:05:39] Microsoft even publishes playbooks to spot risky OAuth apps, acknowledging the problem.

[00:05:44] But incentives still tilt toward convenience. For overworked admins, approving once feels easier than vetting thoroughly.

Regulatory Realignment of Incentives

[00:06:03] If incentives reward broad access, who reins it in? Increasingly, regulators.

[00:06:11] In the U.S., the Federal Trade Commission has penalized companies for misleading consent practices.

Disney and Mobilewalla paid fines Companies were required to change product design, not just pay penalties

[00:06:26] In Europe, the IAB’s Transparency and Consent Framework has been ruled non-compliant with GDPR. Courts held that consent at scale does not equal valid consent.

[00:06:46] Regulators are also challenging “consent or pay” models, stating they undermine freely given consent.

[00:06:59] This is a regulatory re-alignment of incentives. If the market rewards permission grabs, fines and rulings push companies in the opposite direction—toward less data collection.

The User’s Perspective and Erosion of Trust

[00:07:14] From the user’s point of view, the problem is visible:

Apps request more permissions than needed Cookie banners are confusing IT teams approve apps that later lead to phishing

[00:07:46] The result is erosion of trust. Users stop believing that:

Consent equals choice Delegation equals least privilege

[00:07:56] Once trust is lost, it’s hard to rebuild. Every new product must fight against this backdrop of suspicion.

How Do We Fix This?

[00:07:58] So how can delegation and consent become real trust-building mechanisms instead of hollow rituals?

[00:08:04] Here’s a list:

Purpose-bound scopes: tokens tied to specific actions, not broad categories Time-boxed tokens: access that expires quickly unless renewed Refusal symmetry: reject buttons as visible and easy as accept buttons Transparent change logs: apps publishing history of permission requests Admin consent boards: enterprise review panels instead of one pressured approver Trust reports: companies disclosing how often requests are denied, access revoked, and policies enforced

[00:09:05] Each of these shifts incentives toward making trust the key performance indicator.

Who Actually Benefits?

[00:09:16] Returning to the original question: who benefits from delegation and consent today?

Companies: more permissions, more data, more revenue Regulators: political capital when stepping in Attackers: durable, broad tokens for persistence People: benefit mostly in theory, but often remain the least protected

[00:09:57] Delegation and consent were meant to empower users. Today, they mostly empower everyone else.

[00:10:04] But both are too important to discard. They must be reclaimed from warped incentives.

[00:10:18] That means:

Treating trust as the KPI Designing delegation for least privilege, not maximum access Regulators continuing to push back against manipulation

[00:10:30] Because if only companies and attackers benefit, we’ve lost the plot.

Closing Thoughts

[00:10:44] If you want to dive deeper, explore the work of Eve Maler at the Venn Factory. Her white paper on consent is a fantastic resource worth reading.

[00:11:06] Thanks again for joining A Digital Identity Digest.

[00:11:17] If this episode made things clearer—or at least more interesting—share it with a friend or colleague. Connect with me on LinkedIn @hlflanagan.

And don’t forget to subscribe and leave a review on Apple Podcasts or wherever you listen. The written post is always available at sphericalcowconsulting.com.

Stay curious, stay engaged, and let’s keep these conversations going.

The post Delegation and Consent: Who Actually Benefits? appeared first on Spherical Cow Consulting.

Discover, monitor, and secure your APIs with Fastly API Discovery. Get instant visibility, cut the noise, and keep your APIs secure and compliant.

Intelligence for a Changing Landscape

The post Identity Market & Policy Trends 2026: Intelligence for a Changing Landscape appeared first on Liminal.co.

Hand someone a ledger full of cold storage and they’ll sleep fine at night. Hand them the same ledger and tell them it’s their daily identity and they’ll start sweating. That’s the dividing line between Externally Owned Accounts (EOAs) and the future of Web3 identity.

👉 [7 Proven Ways Smart Wallets Transform Web3 Identity Forever]

EOAs are the oldest and most widely used model for blockchain accounts. They were introduced in Ethereum’s earliest days, designed around a single principle: one private key controls one account. That design is elegant in its simplicity and still unmatched when it comes to long-term security.

But as Web3 evolves into a world of portable, reputation-based, and privacy-first identity, it’s worth asking: where do EOAs fit in?

What Are EOAs in Web3?

An EOA is the most basic account type in Ethereum and many other blockchains. Unlike smart contracts, EOAs have no internal code or logic. They exist to send and receive assets, secured entirely by a private key.

If you control the key, you control the account. Lose the key, and the account is gone forever. There is no backup, no recovery, and no reset button.

That rigidity is why EOAs are perfect for what they were built for: vaults.

EOAs as Vaults in Web3 Identity

When it comes to cold storage and long-term custody, EOAs are unmatched. Pair one with a hardware wallet and you have one of the most secure setups in all of crypto.

Staking: EOAs work perfectly for locking up assets in staking positions. Governance tokens: If you plan to hold voting power for years, an EOA keeps it safe. NFT collections: For high-value NFTs meant for long-term ownership, EOAs are the best option. Institutional custody: Funds and DAOs often rely on EOAs for their simplicity and auditability.

The lack of flexibility is what makes them secure. No extra logic means fewer attack vectors. No recovery flows means fewer trust assumptions. Just a private key, a wallet, and assets locked away until you decide to move them.

Why EOAs Struggle as Daily Web3 Identity

The problem comes when EOAs are forced into a role they weren’t designed for: identity.

Daily Web3 identity requires accounts that are:

Recoverable if a key is lost or a device breaks Readable with human-friendly identifiers instead of 42-character hex strings Portable across chains, dApps, and platforms Flexible enough to hold credentials, permissions, and reputation

EOAs can’t do any of this. They’re silent vaults. They don’t carry context or history. They can’t evolve as your needs change. And they put every bit of risk onto one fragile key.

This is where smart wallets and Account Abstraction take over.

EOAs vs Smart Wallets: Dividing the Labor

It’s easy to frame EOAs and smart wallets as competitors, but that’s the wrong way to look at it. They’re complements. Each plays a specific role in the Web3 stack.

EOAs are vaults: best for long-term asset storage, cold custody, and high-value holdings. Smart wallets are identity: built for daily use, recovery, credentials, cross-chain logic, and compliance.

Instead of replacing EOAs, smart wallets expand Web3 identity beyond them. The vaults still exist, but identity moves into programmable, human-friendly infrastructure.

Why EOAs Still Matter for the Future of Web3

Even as smart wallets gain adoption, EOAs will remain essential for three reasons:

Security: The simplicity of EOAs makes them the most secure baseline for storage. Reliability: They are battle-tested and widely supported across every major blockchain. Foundation: Many smart wallets ultimately anchor to EOAs under the hood, ensuring that the vault layer remains intact.

In other words, EOAs aren’t going away. They are the bedrock of Web3. But they can’t carry the entire weight of identity.

The Balance Ahead

The future of Web3 identity is not either-or. It’s both.

Use EOAs for vaults: keep long-term assets locked down in their simplest, most secure form. Use smart wallets for identity: manage recovery, credentials, and interactions across chains and applications.

Together they cover the full spectrum of what Web3 demands: immovable security on one end, human usability on the other.

Try It Yourself: EOAs with ONT ID in ONTO Wallet

EOAs are the backbone of long-term Web3 security. With ONT ID, you can anchor an EOA to your decentralized identity and keep assets safe while still unlocking future-ready features like staking and verifiable credentials.

Download ONTO Wallet to:

Manage EOAs for secure asset storage Stake directly from your vaults Connect your EOA to ONT ID for portable identity Explore verifiable credentials while keeping full self custody

Whether you’re holding tokens, securing NFTs, or preparing for the next phase of Web3 identity, ONTO Wallet gives you the flexibility of smart features with the permanence of EOAs.

Learn More: How Smart Wallets Complete the Picture

EOAs may be the vaults of Web3, but they’re only half the story. To see how Account Abstraction and smart wallets transform identity into something portable, recoverable, and privacy-first, read the full breakdown:

👉 [7 Proven Ways Smart Wallets Transform Web3 Identity Forever]

The Role of EOAs in Long-Term Web3 Identity was originally published in OntologyNetwork on Medium, where people are continuing the conversation by highlighting and responding to this story.

Fastly commits to 100% renewable electricity coverage across its global network and offices, advancing a sustainable internet and supporting customers' climate goals.

Every time you buy something, open an account, search the internet, interact on social media, and use smart devices, public WiFi, and AI, you leave a trail of personal information or “personal data” that is being collected, shared, used, and abused. Suddenly you’re getting spam calls, phishing emails, smishing texts, and data breach alerts, all while someone is booking flights to Ibiza with your credit card and taking out mortgages in your name!   

In 2025, our digital footprints are vast and vulnerable— and online privacy is an urgent issue.

This guide covers everything you need to know about online privacy:

What are personal data and your digital footprint? Who’s collecting your personal information and why? What happens when your information gets into the wrong hands? What is data privacy? Are there data privacy laws? What you can do to protect yourself

What are personal data and your digital footprint?

Your digital footprint is all the information about you that exists on the internet because of your online activity. It’s sometimes called your digital exhaust because, just as engine exhaust is residue from using a car, digital exhaust is residue from using the internet. 

Your data is collected from:

Websites (cookies, tracking pixels, session recording) Mobile apps (permissions, background data sharing) Social media (likes, shares, behaviour analysis in social graphs and interest graphs) Smart devices Artificial intelligence (AI) tools Public WiFi and location tracking

Your digital footprint contains what’s called your personal data. Data is information, and  personal data (or personal information or (to get technical) personally identifiable information) is officially defined as any data that can be used to distinguish or trace an individual’s identity and any other information that is linked or linkable to an individual, such as medical, educational, financial, and employment information. 

Examples of PII are:

your full name, maiden name, mother‘s maiden name, and alias your date of birth, place of birth, race, religion, weight, activities, geographical indicators employment information, medical information, education information, financial information personal ID numbers such as your SSN and passport and driver license numbers your addresses your telephone numbers IP or MAC address personal characteristics, including photographic images, x-rays, fingerprints, or other biometric image your vehicle registration number or title number

Who’s collecting your personal information and why?

Our digital world is now so reliant on user data it’s described as surveillance capitalism and the data economy. Loads of players have their fingers in this “personal data pie”, including:

Big tech

Tech companies like Alphabet (Google), Meta, Amazon, Apple, Microsoft are giving you “free” access to their platforms and products in return for your personal information, time, and attention. Have you heard the saying, “If you’re not paying for the product, you ARE the product?”

Part of your digital footprint is also what’s known as your social graph and your interest graph. A social graph is a digital map of who you know—your relationships within a social network including your friends, family, coworkers, etc., while an interest graph maps what you like—it connects you to other people based on shared interests, hobbies and topics, rather than personal relationships.

Big tech uses all this personal data to:

Sell ads to third-party advertisers that serve you personalized ads (those scarily coincidental ads that pop up within seconds of your search for a product) Control the content you see, including news feeds and social media posts Set higher prices (you search for something high risk like “motor racing” and suddenly your insurance premium goes up) Influence your political decisions (read up on Cambridge Analytica for a famous example). 

And here’s another thing: most users never consent to their information being used in these ways. Most privacy policies are long, vague, and unreadable, and user consent is complex. What’s more, many apps use dark patterns—design tricks that pressure users to share more information and buy more products than they want to.

Data brokers

Data brokers, which are about 4000 legitimate but unregulated organizations worldwide, are gathering and collating your lucrative data to sell profiles to advertisers, insurers, and political groups. These profiles can include:

your age marital status where you live your email address employer how much money you make how many children you have where you shop what you buy your medical conditions and health issues who you vote for and support

Data brokers usually sell user information to brands in list form. Your email address on a list of people with a particular medical condition such as diabetes would be worth about $79 and on a list of a particular class of traveller about $251. And that’s another thing: A lot of your personal data online isn’t stuff you’d want to share around. While data brokers say the data is anonymized, it’s scarily simple to re-identify so-called “anonymous” data. In fact, some researchers say anonymous data is a lie, and that unless all aspects of de-identifying data are done right, it is incredibly easy to re-identify the subjects.

Governments

Worldwide, governments use citizens’ personal data for surveillance under the guise of national security, public safety, and crime prevention. For example, Proton recently reported that Google, Apple and Meta have handed over data on 3.1 million accounts to the US authorities over the last decade (regardless of which political party was in the White House), providing information such as emails, files, messages, and other highly personal information.

“In the past, the government relied on massive, complex and legally questionable surveillance apparatus run by organizations like the NSA. But thanks to the advent of surveillance capitalism, this is no longer necessary,” said Raphael Auphan, Proton’s chief operating officer.

“All that’s required for the government to find out just about everything it could ever need is a request message to big tech in California. And as long as big tech refuses to implement widespread end-to-end encryption, these massive, private data reserves will remain open to abuse,” Auphan added.

Hackers and scammers

Criminals exploit stolen data in many different ways, which brings us to the next point …

What happens when your personal information gets into the wrong hands?

We’ve covered what brands and governments do with your personal information. Bad actors can also do a lot of damage with your data:

Identity theft: Using your stolen information to impersonate you for financial gain or to commit crimes Financial fraud: Accessing your bank accounts, credit card information, or other financial accounts to make unauthorized transactions Phishing: Sending fraudulent emails or messages pretending to be from legitimate organizations to trick you into revealing more information or clicking on malicious links Social engineering: Manipulating you into divulging confidential information, often by posing as someone you trust or using your stolen information to build credibility Account takeover: Gaining unauthorized access to your online accounts (email, social media, etc.) using your stolen usernames and passwords Tax fraud: Using stolen personal information to file fraudulent tax returns and claim refunds Medical identity theft: Using your stolen information to get medical services and prescriptions, or to fraudulently file insurance claims Employment fraud: Using your stolen information to illegally gain employment or benefits Blackmail or extortion: Threatening to expose your sensitive information unless you pay a ransom Creating fake identities: Using your stolen information to create new identities for various fraudulent purposes.

Data breaches are the new normal

One way bad actors get your information is through data breaches. A data breach is a security event where highly sensitive, confidential or protected information is accessed or disclosed without permission or is lost.

We’ve almost come to expect massive, damaging data breaches. The year 2024 had the most data breaches on record, and 2025 has already seen the largest data breach of all time: the leaking of more than 16 billion usernames and passwords to user accounts with Apple, Facebook, Google, other social media accounts, and government services.

AI is making data privacy worse

AI is connecting just about everything in our lives, from our vehicles to eyewear, and we’re using it in all sorts of everyday ways. But AI presents privacy risks not only in what we share but also in how AI can analyze, infer, and act on that information without our permission (think: deep fakes, for example).

Academics have already identified at least 12 privacy risks from AI, and safe and ethical AI governance is a priority.

What is online privacy?

You might say, “I have nothing to hide”, “Privacy tools are only for criminals” or “Social media is harmless fun,” but against this backdrop of risks and damage, you can see the urgent need to protect your online privacy (or data privacy). This is about your rights to control your personal information and how it’s used.

Data privacy matters because it protects our fundamental right to privacy and means we can:

Limit others’ control over us to know about us and to cause us harm Better manage our professional and personal reputations  Put in place boundaries and encourage respect Maintain trust in relationships and interactions with others Protect our right to free speech and thought Pursue second chances for regaining our privacy Feel empowered that we’re in control of our life.  Are there data privacy laws?

Data privacy laws are designed to give users more control over their personal data by regulating how organizations can collect, store, and use that information.

As at 2024, 137 countries have national data privacy laws, which means 70% of nations worldwide, 6.3 billion people, or 79.3% of the world’s population is covered by some form of national data privacy law.

Despite many attempts, the United States is one of the only major global economies without a strong national privacy law similar to the European Union’s GDPR—the gold standard for consumer data privacy protections and with regulatory impact around the world. Instead, the US has a patchwork of state-based privacy laws. A dedicated working group was recently formed to try again on a US federal privacy law, so watch this space.

What you can do to protect your personal information and online privacy

Regardless of the laws, you can do a lot to protect yourself. First, you need to cover some basics:

Use strong, unique passwords for each of your online accounts. Store them securely in a password manager. Enable two-factor authentication (2FA). Don’t share sensitive details on public platforms or unsecured websites. Keep your software and devices updated. Be cautious of phishing emails and smishing texts, links, and attachments. Know what to do in the event of a data breach. Switch to a private browser that stops ads and tracking. Use end-to-end encrypted messaging and calling, wherever possible. Regularly review your privacy settings on platforms like Facebook, X, Instagram, and LinkedIn to limit data collection. Limit app permissions to stop third-party services from accessing your data. Regularly audit your online activity to remove old or inactive connections, unfollow accounts, and mute topics you’re not interested in. Unsubscribe from unnecessary services. Clear browsing history and cookies regularly

If that seems a lot, we have good news: MySudo all-in-one privacy app deals with many of those actions in one simple app—and the other apps in the MySudo family take you even further.

MySudo

MySudo all-in-one privacy app is built around the Sudo, a secure digital profile with email, phone, and virtual cards to use instead of your own. Anywhere you usually give your personal details, you simply give your Sudo details instead. Sudos let you live your life online without spam, scams, and constant surveillance.

What’s in a Sudo? 1 email address – for end-to-end encrypted emails between app users, and standard email with everyone else 1 handle* – for end-to-end encrypted messages and video, voice and group calls between app users 1 private browser – for searching the internet without ads and tracking 1 phone number (optional)* – for end-to-end encrypted messaging and video, voice and group calls between app users, and standard connections with everyone else; customizable and mutable 1 virtual card (optional)* – for protecting your personal info and your money, like a proxy for your credit or debit card or bank account

*Phone numbers and virtual cards are only available on a paid plan. Phone numbers are available for US, CA and UK only. Virtual cards are for US only. Handles are for end-to-end encrypted comms between app users.

You can have up to 9 separate Sudos in the app. With your Sudos, you can:

Protect your information. Basically, with MySudo, you decide who gets your personal information, and everyone else gets your Sudo information. 

Instead of using your own email, phone number, and credit card all over the internet, use the alternative contact details from your Sudo. So, you would use your Sudo email and phone number to open and log into accounts and contact people; use the private browser to search online without ads and tracking; and use your Sudo virtual card to pay for purchases without exposing your own credit or debit card. Virtual cards are linked to your own credit card or debit card but don’t reveal those details during transactions.

In this way, you … Break your data trail. When you compartmentalize your life into different Sudos, you silo your information and make it impossible for anyone to track you across sites and apps to sell or steal your personal information. And if one Sudo’s details get caught in a data breach or is heavily spammed, you can either ignore it, mute it, or delete it and start again.

Uses for Sudos are limited only by your imagination. Sign up for deals and discounts, book rental cars and hotel rooms, order food or sell your stuff – all without giving away your personal information. Be creative with your Sudos: Setting up a dedicated Sudo to stay safe while volunteering is a popular choice, for example.

You might like:
How MySudo lets you control who sees your personal info online and in real life
From Yelp to Lyft: 6 ways to “do life” without using your personal details
4 steps to setting up MySudo to meet your real life privacy needs Use the end-to-end encrypted messaging and calling within each Sudo to keep your conversations private. Your Sudo phone number works like a standard number but also gives you secure connections to other MySudo users, making MySudo a great private messaging app.

You can also use your Sudo handle (instead of a phone number) for end-to-end encrypted communications between other MySudo users, too (invite your friends to the app!). Read: How to get 9 “second phone numbers” on one device. Use the end-to-end encrypted email between MySudo users for secure communications. MySudo email is a popular secure email service with full send and receive support. It’s entirely separate from your personal email account and intentionally protects your personal email from spam and email-based scams.

Read: 4 ways MySudo email is better than masked email. Use the private browser within each Sudo in MySudo to search the internet free of ads and trackers. Use the virtual card within each Sudo in MySudo to hide your transaction history from your bank and others that they sell your data to. (Yes, they do!).

Discover more about how MySudo lets you control who sees your personal information online and in real life. Also check out how MySudo keeps you safe on social media even in a data breach.

Once you’ve got MySudo on your side, do these 3 things:

Reclaim your information from companies that store and might sell it with RECLAIM personal data removal tool. See who has your information, discover whether it’s been caught in a data breach, and then either ask the company to delete it or substitute it for your Sudo information using MySudo. RECLAIM is part of the MySudo app family.
Encrypt your internet connection and hide your IP address with MySudo VPN, the only VPN on the market that’s actually private. MySudo VPN is the perfect companion for MySudo privacy app since they’re engineered to work seamlessly together. 
Be first in line to use the new MySudo password manager to securely store, autofill, and organize every log-in, password, and more. Coming soon!

Why should I trust MySudo?

MySudo does things differently from other apps:

We won’t ask for your email or phone number to create an account. You don’t need a registration login or password to use MySudo. Access is protected by a key that never leaves your device. We’ll only ask for personal information for virtual cards, and UK phone numbers, when a one-time identity verification is required.

By securing your own information, you take back control of your life, money, safety, and reputation. There’s never been a better time.

Get started today:

Download MySudo
Download RECLAIM
Download MySudo VPN

You might also like:

What constitutes personally identifiable information or PII? 14 real-life examples of personal data you definitely want to keep private What is digital exhaust and why does it matter? Californians, this is why you still need MySudo despite the new “Delete Act” This is why MySudo is essential, even 10 years after Snowden What is a data breach? What should I do if I’ve been caught in a data breach?

The post Your Complete Guide to Online Privacy in 2025: Who is Taking Your Personal Info and How to Stop Them appeared first on Anonyome Labs.

Imagine walking into an airport and breezing through security just because a camera recognized your face. That’s not science fiction anymore. This is the power of face recognition software, a technology that maps your unique facial features and matches them against stored data.

From unlocking smartphones to catching criminals, this software is shaping our everyday lives. But along with convenience come questions about accuracy, privacy, and trust. Let’s break it down in simple words so you know what’s happening behind the lens.

 

What is Face Recognition Software

Face recognition software is a type of biometric technology that identifies or verifies a person by analyzing facial features. Think of it as a digital fingerprint, but for your face.

The process usually starts with face matching software, which compares a captured image to existing images in a database. This allows systems to confirm if two faces belong to the same individual.

For everyday people, the most relatable example is your smartphone. Every time you unlock it by looking at the screen, the phone uses a form of this software to confirm your identity.

 

How Face Recognition Software Works Behind the Scenes

At first glance, it feels magical. But under the hood, face recognition is powered by math, algorithms, and a whole lot of data crunching.

 

1. Data Capture and Photo Face Detection Software

It starts when a camera captures your face. The photo face detection software identifies the position of your eyes, nose, mouth, and chin. These landmarks form the foundation of your facial “map.”

2. Feature Extraction with Algorithms

Next, the software measures distances between facial features, like the space between your eyes or the curve of your jawline. These measurements are converted into numerical data known as a faceprint.

3. Matching Process with Databases

Finally, the system compares this faceprint against a database of known faces. If there’s a match within the confidence threshold, the system identifies the individual.

Best Face Recognition Software Applications in Real Life

This technology is not limited to spy movies. It’s deeply integrated into industries we interact with daily.

Here are the most common applications:

Smartphones and gadgets – Unlocking phones, securing payments, and managing app access.

Airports and border control – Faster identity checks, reducing wait times for travelers.

Healthcare – Identifying patients and protecting medical records.

Banking – Preventing fraud with stronger security measures.

Retail – Recognizing VIP customers or preventing theft.

Law enforcement – Finding missing persons or identifying suspects in crowds.

A growing use is facial recognition software for photos, where apps automatically tag friends or group images. Social media platforms rely heavily on this feature, which has made photo management much easier for users worldwide.

Comparing the Top Facial Recognition Software Options

With so many tools available, how do you know which one stands out? Independent evaluations, like the NIST Face Recognition Vendor Test, provide objective data on performance. You can also check the FRVT 1:1 performance reports for in-depth benchmarking.

Here’s a simplified comparison table of criteria that matter most:

Criteria Why It Matters What to Look For Accuracy Correctly identifying or verifying faces High true positive rate Speed How quickly results are delivered Real-time or near real-time Scalability Handling millions of faces Cloud or distributed systems Compliance Following laws like GDPR Transparent privacy policies Cost Fits your business budget Flexible pricing models

This breakdown helps businesses pick the top facial recognition software for their specific needs.

 

Privacy and Legal Concerns with Face Recognition

Now comes the elephant in the room. As powerful as this technology is, it raises eyebrows when it comes to personal freedom.

Data storage – Where are your facial scans stored, and for how long?

Consent – Are you being recognized without agreeing to it?

Misuse – Could governments or companies abuse this technology for surveillance?

In Europe, these questions tie directly into GDPR compliance. The rules emphasize transparency, data minimization, and user rights. If an organization mishandles face data, the penalties can be steep.

A 2021 study found that 56 percent of people worry about misuse of facial recognition by authorities. This shows that while the tech is impressive, trust remains fragile.

 

Open Source Face Recognition Options for Developers

Not all solutions are locked behind expensive paywalls. Developers and small businesses often turn to face recognition opensource tools. These options allow for flexibility, customization, and cost savings.

Advantages of open-source tools include:

Free or low-cost access to powerful libraries.

Large communities that support development.

Ability to customize for unique projects.

Faster innovation through collaboration.

One notable resource is the Recognito Vision GitHub, where developers can explore codebases, contribute, and experiment with new applications.

 

Future Trends in Face Recognition Technology

The pace of innovation isn’t slowing down. Researchers are refining algorithms to improve speed and reduce bias.

Future trends to watch:

Ethical AI – Systems that reduce bias across race and gender.

Edge computing – Processing data on devices instead of servers for faster results.

Integration with IoT – Smart cities that use recognition for traffic, safety, and efficiency.

Privacy-first models – More tools will adopt privacy-by-design frameworks.

Experts predict that within the next decade, face recognition will be as common as passwords are today, though hopefully far more secure.

 

Conclusion

Face recognition software is no longer futuristic tech, it’s a reality shaping security, convenience, and even social interactions. From photo face detection software to face matching software, its reach is growing rapidly. Yet, the real challenge is balancing innovation with privacy. Companies that master this balance will win trust in the long run.

And speaking of innovation, Recognito is one brand pushing these boundaries with responsible and practical applications.

 

Frequently Asked Questions

 

What is the difference between face detection and face recognition?

Face detection finds and locates a face in an image, while recognition goes a step further by identifying or verifying who that person is.

Is face recognition software always accurate?

No, accuracy depends on the algorithms, quality of data, and lighting conditions. According to NIST tests, top systems can reach over 99 percent accuracy in controlled settings.

Can face recognition software work with old photos?

Yes, many systems can analyze older images. However, accuracy may decrease if the photo quality is low or the person has aged significantly.

Is open source face recognition safe to use?

Yes, but it depends on how it’s implemented. Open-source tools are flexible, but developers must ensure strong security practices when handling sensitive data.

How does face recognition affect privacy rights?

It raises major concerns about surveillance and consent. Laws like GDPR in Europe require companies to handle facial data transparently and responsibly.

Ready to scale your app? Learn how to choose between Auth0's Self-Service and Enterprise plans, based on your team's need for speed, autonomy, and predictable pricing.

Why are identity and data critical in healthcare?

Healthcare —both public and private— faces a structural challenge: managing massive volumes of sensitive data from patients, professionals, and institutions while ensuring accuracy, security, and transparency. So, how Extrimian Drives Digital Trust in Healthcare?

Today’s systems are fragmented. Patient admissions, authorizations, professional validations, or organ transplant waiting lists still rely on manual processes or disconnected databases. The consequences are severe:

Excessive bureaucracy → long delays for authorizations, transplants, or referrals.

Hidden costs → thousands of hours in manual administrative work.

Fraud risks → falsified medical degrees or manipulated patient records.

Social distrust → patients unsure if they are on the correct waiting list; doctors lacking visibility into processes.

In a sector where every minute can make the difference between life and death, the question becomes urgent: How can healthcare systems modernize identity and data management without sacrificing security or trust?

What does Extrimian propose to solve these challenges?

Extrimian provides an ecosystem of Verifiable Credentials (VCs) and digital identity tools enabling hospitals, clinics, insurers, and public agencies to:

Issue and validate credentials in seconds, instead of manual processes taking days.

Guarantee advanced security, with tamper-proof, instantly verifiable records.

Ensure compliance with international standards (W3C, DIF, GDPR, HIPAA).

Optimize costs and resources, cutting bureaucracy and human errors.

Improve patient and professional experience, simplifying access and workflows.

All built on principles of privacy by design, interoperability, and open standards.

How does self-sovereign identity (SSI) apply to healthcare?

Self-Sovereign Identity (SSI) places individuals at the center of control over their personal data.

For patients: medical history, diagnoses, or lab results can be issued as portable, verifiable credentials.

For medical professionals: degrees, licenses, and certifications are turned into tamper-proof VCs that any hospital can instantly verify.

For institutions: each credential is validated without intermediaries and easily integrated into existing hospital systems.

SSI does not replace health systems; it strengthens them with a new layer of trust.

Case Study: How Extrimian helped INCUCAI improve Argentina’s transplant system

The Instituto Nacional Central Único Coordinador de Ablación e Implante (INCUCAI) faced a long-standing challenge: managing the national emergency transplant waiting list.

The problem

Slow processes in organ allocation.

Limited transparency in prioritization.

Patients and families receiving little real-time information.

The Extrimian implementation

Extrimian introduced verifiable credentials to build traceability and trust into the national list:

Every update in the list is issued as a verifiable credential.

Patients and doctors can instantly verify position and status.

All changes are validated securely, without risks of tampering.

The results

Significant time reduction in allocation and updates.

Full transparency for patients, professionals, and regulators.

Improved patient experience through clear communication.

Strengthened trust in one of the most sensitive areas of healthcare.

This pioneering use case demonstrated how Extrimian’s technology can save lives by enhancing transparency and efficiency in public healthcare.

More about this case studie: Extrimian & INCUCAI

What other use cases does Extrimian enable in healthcare? 1. Medical professional identity verification

Problem: manual validation of degrees and licenses.
Solution: verifiable credentials that confirm authenticity instantly, eliminating fraud risks.

2. Verifiable medical records

Problem: fragmented medical histories between hospitals, insurers, and regions.
Solution: interoperable VCs that patients can carry and present anywhere, securely and instantly.

3. Smart access to healthcare services

Secure login for hospital web portals.

QR- and VC-based access control for labs, operating rooms, and medical events.

Automated attendance for in-person and virtual consultations.

4. Patient benefit networks

VCs as digital passes for transportation or pharmacy discounts.

Integration with insurance, pharmacies, and wellness services.

5. Academic and professional certifications

Credentials for courses, residencies, and specializations issued as VCs.

Streamlined hiring and international mobility for healthcare professionals.

What tangible benefits do healthcare institutions gain?

Institutional prestige: issuing VCs with the institution’s brand boosts trust and modernity.

Advanced security: tamper-proof credentials reduce fraud.

Operational efficiency: automated processes cut costs and errors.

Enhanced patient experience: simpler, faster, user-centric interactions.

Strategic partnerships: connection with fintech, insurance, and other key sectors.

Global compliance: alignment with W3C and DIF standards ensures global acceptance.

How is Extrimian implemented in healthcare institutions? Step 1: Personalized demo

Showcasing practical use cases like patient admission or credential verification.

Step 2: Modular implementation

Start with one specific case (e.g., issuing medical certificates) and scale up to a full ecosystem.

Step 3: Continuous support

Training workshops and Extrimian Academy.

Ongoing technical support.

ROI measurement with clear impact metrics.

What is the ROI of verifiable credentials in healthcare?

Administrative savings: up to 60% time reduction in credential verification.

Fraud reduction: fewer legal risks and malpractice cases.

Efficiency gains: processes that once took days now take seconds.

Intangible value: reinforced patient trust and institutional reputation.

For a hospital serving 10,000 patients annually, the potential savings amount to hundreds of thousands of dollars, alongside a substantial boost in credibility.

Conclusion: towards a more trusted, efficient, and human healthcare system

Healthcare needs trust, agility, and security. With Extrimian, identity verification and data management stop being a problem and become a competitive advantage.

The INCUCAI case proves it is possible to reduce delays, increase transparency, and improve patient and professional experiences. And this is just the beginning: from private hospitals to national public networks, verifiable credentials can raise the standard of trust in healthcare worldwide.

👉 Want to explore how these benefits could work in your institution?
Schedule a personalized demo with the Extrimian team today.

The post How Extrimian Drives Digital Trust in Healthcare first appeared on Extrimian.

Reflections from the DWeb Seminar

In August I had the privilege of participating in the DWeb Seminar 2025, an intimate gathering designed to “map the current DWeb technological landscape, learn from each other, and define the challenges ahead”.  For those unfamiliar with the event, Wendy Hanamura’s excellent recap captures the spirit and outcomes beautifully. As part of the event we were invited to offer a 15 minute “input talk” to the other participants.   I chose to share a fundamental question that has driven Holochain from its inception – and explore how this question shapes not just our technology, but our entire approach to building decentralized systems.

The Core Question: How Does Desirable Social Coherence Evolve?

Everything we do at Holochain (and the projects that I've been nurturing through Lightningrod Labs, like Moss and Acorn) stems from this central inquiry. But what do I mean by “desirable social coherence” and why does it matter? 

You can think of social coherence as a group’s long-term stability. Like most things this property exists along a gradient: some social bodies have more coherence than others, which depends on their capacity to respond and adapt to environmental changes as a result of the patterns, practices and organizing principles that they operate by.  But therein lies the rub.  Some of  these patterns provide lots of coherence, but they may not be desirable or pleasant for the individuals taking part in them!  It’s no fun for almost everybody involved in an authoritarian regime, but it does have a real degree of stability.   My fundamental belief, however,  is that not only is it possible to evolve these patterns and processes in directions that participants will find pleasant and desirable, but that doing so actually yields the most long term stability because they will by that fact not contribute to destabilizing it.

The Challenge: Current digital systems scale through centralization and intermediation of critical social functions. Unfortunately, this creates undesirable forms of social coherence – power imbalances that enable both intentional and unintentional abuse. When a few entities control the platforms where billions interact, we may get coherence, but it's often extractive rather than generative. Furthermore our current systems are difficult to evolve because of their very centralization and the interests that want to keep them that way to maintain power.

The Opportunity: Decentralized technology can create substrates for evolvable social coherence – essentially, DNA for social organisms. Instead of rigid, centralized structures, we can build infrastructure that enables new forms of social fabric to emerge and multiple scales, yielding increasing collective intelligence

A key insight here is that there is no single “correct” form of social coherence. What works is contextual, diverse across time, space, and scale. What we need is infrastructure that enables continuous evolution and discovery – balancing stability with emergence. 

How This Shapes Our Work at Holochain

This framework isn’t abstract philosophy - it directly informs every architectural decision we make. When building technology to support evolvable social coherence, several principles become essential:

Engagement Spaces as Building Blocks

Human social fabric is built out of layers of interacting and layered “engagement spaces” – essentially social contracts with defined rules. We need infrastructure that makes it easy to create, use, and compose these spaces. The current web may have “solved for” decentralization of publishing - anyone can create a website or blog without permission. But the places where people actually interact and engage with each other (social media platforms, forums, collaborative tools, even finance and accounting tools) remain under intermediary controlled web-servers. Our approach requires protocols where neither the data nor the rules of the group interaction are held by intermediaries. 

Agency AND Accountability, Mutually Interwoven

Individuals need genuine agency through their technology - the ability to participate in multiple spaces, move between them, and take their data with them. But this autonomy must be paired with accountability within the contexts where they participate. This tension between empowerment and responsibility is productive, not problematic.

Uncapturable/Unenclosable Carriers: The infrastructure itself must be immune to capture - meaning no single entity can gain enough control to dictate rules, extract value, or shut down the system. We’ve seen far too many examples of infrastructure capture” governments shutting down internet services during protests, platform owners changing terms to benefit their shareholders, or cloud providers being pressured to deplatform users. Even when specific engagement spaces have their own defined rules, the underlying “carrier” of those interactions must remain decentralized. This enables autonomous group formation without intermediation - groups can organize however they choose without worrying that their technological foundation can be pulled out from under them.  

Local State, Global Visibility: Rather than forcing artificial global consensus (like blockchains do), we recognize that state is inherently local but can achieve consistent global visibility if nodes share data.  Operating this way eliminates unnecessary coordination bottlenecks while maintaining system coherence. 

Architectural and Design Consequences

The principles stated above have very concrete design and implementation consequences.  For those technically familiar with Holochain you already know how they show up in the design, but here I list some of the key aspects along with pointers to documentation that describe each consequence in more detail.

Start with a capacity to define & create a known “engagement space”.  The “rules of a game”.  This consists of the hash of a set of data-types & relations and deterministic validation rules for creation of that data. In Holochain we call this the DNA Allow agents to be the authoritative source of all data, i.e. agents “make plays” according to the rules of the DNA.  Ensure that when this data is shared, it has intrinsic data integrity, i.e. it’s a cryptographically signed append-only ledger for that source (in Holochain we call this the Source Chain), and ensure that it is identifiable as being part of an engagement space by having the first entry in the chain being an agent’s signing of the space’s hash.  This is also “I consent to play this game”. Share data to an eventually consistent Graphing Distributed Hash Table (DHT), in which other agents validate that all shared data follows the rules of the game. Ensure that agents who don’t follow the rules can be blocked/ignored.  This prevents capture. Allow for “bridge” calls between engagement spaces at the agentic locus (i.e. not at the group level) for composability of spaces.  This ensures composibility, autonomy, and accountability

There are of course more details in the design, but these are some of the key ones that fall out of the principles.

Resonance at the DWeb Seminar

What struck me most about the seminar was how much of our framework resonated with challenges other participants were grappling with, even when they approached them from different angles.  I would even say that the Seminar itself was fundamentally an example of this thinking.  It was a carefully designed set of patterns and processes  for a literal engagement space (this time physical instead of digital) whose purpose was to increase the social coherence of players in the p2p domain.  These patterns not only included the processes of the input-talks, the unconference sessions, and commitment to production of a collaborative write-up, but also the relational parts of cooking together and sharing non-work time together.  All of this together created desirable social coherence.   And it’s this pattern that we are all trying to create powerful affordances for in the digital world.

Some further examples: During the unconference sessions, conversations kept circling back to fundamental questions about coordination, autonomy, and accountability. 

When we discussed "UI Patterns for Peer-to-peer," I saw it as asking: how do we make decentralized engagement spaces feel natural and empowering to users? When we debated collaborative data model requirements, I saw it as exploring: how do we maintain coherence across distributed participants without sacrificing agency?

When Rae McKelvey shared her focus on "purpose-built apps" that solve real social problems to me that aligned perfectly with the engagement space concept—recognizing that different contexts require different rules and structures. 

At the technical level David Thompson's work on object capabilities and Duke Dorje’s work on recryption and identity both live into the same autonomy-with-accountability tension we see as central to social coherence.  The ever-present discussions about how best to implement CRDTs (Conflict-free Replicated Data Types, of which Holochain’s DHT is an example) revealed the shared underlying assumption: that meaningful coordination really is possible without central control, that local autonomy and global coherence can coexist, and most profoundly that the infrastructure we build shapes the social possibilities it enables.

But if everything resonated so well, what’s the big deal?

Why This Matters for the Decentralized Ecosystem

Probably the most common complaint I’ve heard over the years from folks who see the astounding potential of decentralized infrastructure goes something like this:  “There are so many different p2p solutions, and teams that seem to be working in isolation, why can’t you just agree on a single solution and work together?”  On the surface, this sounds like a reasonable complaint, but the lens of coherence helps understand why “working together” is actually such a hard problem to solve.  

Recalling from the start of this article: what creates coherence are the patterns, practices and organizing principles of a group.  Just because groups have the same goals and want the same outcomes, does not mean that they start their patterns, processes and organizing principles are similar and compatible.  In fact, almost always, they aren’t.  But this relates to why the DWeb Seminar was so important.  It successfully operated according to a higher order organization principle that created an engagement space precisely for the purpose of getting at what patterns, practices and organizing principles folks in the broad DWeb community were operating by, and making them visible and .  

So to me this was an example of exactly the underlying principles that we’ve been embedding in Holochain’s architecture from the start.

So, while the decentralized web movement often focuses on technical capabilities – faster consensus, better cryptography, more efficient protocols, we are now seeing the community beginning to seriously see these as means, not ends. The higher level question remains: what kinds of social possibilities can these technologies enable? 

This approach enables us to build towards greater “commons enabling infrastructure” - technology that strengthens shared resources and collective capacity rather than extracting value. The creation of digital, unenclosable fabric of engagement spaces is central to this goal. Instead of platforms that capture value from user interactions, we can build infrastructure that enables communities to create and govern their own spaces, according to their own values. 

When the decentralized ecosystem embraces this approach, many new possibilities emerge:

Interoperability with Purpose: We can more easily build bridges between systems that share compatible social intentions. A climate action network could seamlessly share data and coordinate with a local food co-op using a different protocol, supporting community resilience initiatives that address both environmental and food security challenges, while using mutual-credit currencies backed by the productive capacity of the local farms supplying the co-op. Governance that Evolves: We can build infrastructure that enables continuous governance innovation rather than trying to solve governance once and for all. A neighborhood mutual aid group could start with simple coordination tools, then gradually evolve more sophisticated decision-making processes as their needs change, without having to migrate to entirely new platforms. Network Effects that Serve Users: We can create composable ecosystems where network effects benefit participants rather than extracting from them. As more people join a decentralized social network, the benefits – better content discovery, richer discussions, stronger community bonds - flow to the participants themselves rather than to a platform owner’s advertising revenue.  The Path Forward

The grand challenge of decentralized software is ensuring it actually delivers on evolvable social coherence. This means building infrastructure that serves the flourishing of people and planet rather than extracting from it. 

At Holochain, we’re committed to this path, not just in our technology choices, but in how we organize ourselves, engage with our community, and collaborate with other projects. The conversations at the DWeb Seminar reinforced that we’re not alone in this commitment. 

The adjacent possibility that Wendy described in her recap isn’t just about new technical capabilities – it’s about new forms of social organization that those capabilities make possible. That’s both a tremendous responsibility and an extraordinary opportunity for all who choose to walk to this path. 

AI Agents are a growing influence on how we do business online and it pays to be aware of how they work – and the potential risks they expose.

Also known as Agentic AI, they are defined as autonomous systems that perceive, make decisions, and take action to achieve specific goals within an environment.

The post Are AI Agents a threat to all industries or just another digital tool? appeared first on Veracity Trust Network.

Predictoor DF156 rewards available. DF157 runs September 25th — October 2nd, 2025 1. Overview

Data Farming (DF) is an incentives program initiated by ASI Alliance member, Ocean Protocol. In DF, you can earn OCEAN rewards by making predictions via ASI Predictoor.

Data Farming Round 156 (DF156) has completed.

DF157 is live today, September 25th. It concludes on October 2nd. For this DF round, Predictoor DF has 3,750 OCEAN rewards and 20,000 ROSE rewards.

2. DF structure

The reward structure for DF157 is comprised solely of Predictoor DF rewards.

Predictoor DF: Actively predict crypto prices by submitting a price prediction and staking OCEAN to slash competitors and earn.

3. How to Earn Rewards, and Claim Them

Predictoor DF: To earn: submit accurate predictions via Predictoor Bots and stake OCEAN to slash incorrect Predictoors. To claim OCEAN rewards: run the Predictoor $OCEAN payout script, linked from Predictoor DF user guide in Ocean docs. To claim ROSE rewards: see instructions in Predictoor DF user guide in Ocean docs.

4. Specific Parameters for DF157

Budget. Predictoor DF: 3.75K OCEAN + 20K ROSE

Networks. Predictoor DF applies to activity on Oasis Sapphire. Here is more information about Ocean deployments to networks.

Predictoor DF rewards are calculated as follows:

First, DF Buyer agent purchases Predictoor feeds using OCEAN throughout the week to evenly distribute these rewards. Then, ROSE is distributed at the end of the week to active Predictoors that have been claiming their rewards.

Expect further evolution in DF: adding new streams and budget adjustments among streams.

Updates are always announced at the beginning of a round, if not sooner.

About Ocean, DF and ASI Predictoor

Ocean Protocol was founded to level the playing field for AI and data. Ocean tools enable people to privately & securely publish, exchange, and consume data. Follow Ocean on Twitter or TG, and chat in Discord. Ocean is part of the Artificial Superintelligence Alliance.

In Predictoor, people run AI-powered prediction bots or trading bots on crypto price feeds to earn $. Follow Predictoor on Twitter.

DF156 Completes and DF157 Launches was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

Worried about trusting AI agents with critical data? Auth0 for AI Agents is a complete auth solution that gives companies the confidence to adopt AI securely.

Track the real-world emissions of your Fastly workloads. This blog shares practical tips on using the Sustainability dashboard for greener, faster code.

The hidden risks behind vendor relationships

It starts innocently enough. A supplier begins missing deadlines. A long-trusted partner suddenly resists contract changes. Payments arrive late, documentation lags, and small deviations creep into everyday interactions. These aren’t just operational hiccups—they’re behavioral red flags.

For years, third-party risk management (TPRM) relied on static compliance checklists: audits, certifications, and one-off questionnaires. But today’s risk environment has outpaced that model. Subtle engagement shifts often signal vendor instability—or even fraud—well before a failed audit or regulatory breach brings it to light.The stakes are growing. A single vendor misstep can trigger multimillion-dollar losses, regulatory scrutiny, and reputational fallout. In 2025, the risk that matters most isn’t what the audit catches—it’s what it misses.

What Is Third-Party Risk Management?

Third-party risk management (TPRM) is the discipline of identifying, assessing, and mitigating risks that arise from vendors, suppliers, and business partners. It goes beyond contract compliance to cover financial, cybersecurity, operational, and reputational exposures.

Why compliance checklists fall short

Traditional compliance frameworks provide assurance, but they’re backward-looking. By the time an issue surfaces in an audit, the damage may already be done.

Complex risks are growing: According to Liminal’s Market & Buyer’s Guide for TPRM, 33% of organizations cite complexity of risks as the top barrier to effectiveness—outranking resources or legacy systems. Budgets are shifting: The same research shows that two years ago, 77% of businesses devoted 10% or less of their budgets to TPRM. Today, 84% say funding is sufficient—a 42% improvement. Maturity remains low: Despite rising investment, only 9% of organizations have achieved “advanced” TPRM maturity, underscoring how far the market still has to go.

Static compliance isn’t enough when risk signals emerge daily in behavior, process, and relationships.

The market is moving fast

The risk isn’t just theoretical—the market for third-party risk management is expanding quickly. Liminal’s research shows that while sentiment on budget sufficiency has improved by 42% in two years, only 9% of organizations have achieved advanced maturity.

It’s a sign that boards and executives see TPRM as too important to ignore—but most are still playing catch-up. As Gartner notes, organizations that fail to modernize vendor risk programs face increasing exposure across cybersecurity, compliance, and operational resilience.

Market & Buyer’s Guide for Third-Party Risk Management 2025, p.19 From checklists to behavioral red flags

Behavioral red flags—missed SLAs, contract resistance, data delivery delays, unusual communication shifts—are leading indicators of risk. Unlike static compliance, they reveal real-time vulnerabilities and allow earlier intervention. Behavioral risk monitoring is the practice of tracking deviations in how vendors operate and interact that can signal early signs of instability or misconduct.

The most effective programs are:

Embedding continuous monitoring rather than point-in-time reviews. Integrating behavioral insights into enterprise-wide dashboards. Automating alerts when engagement patterns deviate from norms.

This shift mirrors risk management trends across Data Access Control and AI Data Governance—executives no longer want box-checking. They want predictive visibility into the risks that can derail operations, undermine vendor resilience, and erode supplier trust.

Market & Buyer’s Guide for Third-Party Risk Management 2025, p.18 What executives are demanding now

For boards and CISOs, vendor risk has become strategic infrastructure: as vital to credibility as financial reporting or data security. The new priorities are clear:

Continuous monitoring: Liminal’s Regulatory TPRM Link Index shows that 63% of buyers rank this as their top priority. Automation at scale: 42% cite automation of TPRM activities as their top optimization goal. Data quality: Cybersecurity TPRM buyers emphasize accuracy (89%) and monitoring (85%) as table stakes, guided by emerging frameworks such as NIST’s Cybersecurity Framework. Cross-functional orchestration: Operational buyers demand interoperability across compliance, procurement, and security.

These shifts signal the end of siloed vendor risk teams. The winners will be those who connect behavioral risk detection into broader enterprise resilience strategies.

The executive reality check

Boards no longer accept “checklist compliance” as proof of safety. Regulators and investors expect real-time assurance. Yet with only 9% of organizations achieving advanced TPRM maturity, most enterprises remain exposed.

The Wall Street Journal recently reported on how supply chain disruptions and vendor failures are forcing boards to elevate TPRM to a core resilience strategy—not just a compliance function. It’s a signal that the market is moving fast, and expectations are rising. Regulatory frameworks are evolving in parallel. The SEC now requires detailed cyber disclosures, the EU GDPR continues to impose significant fines, and NIST provides baseline guidance for organizations modernizing their risk programs.

By acting on behavioral red flags, enterprises strengthen resilience and trust. Ignoring them leaves blind spots that regulators and investors won’t overlook.

Turning behavioral insight into advantage

Behavioral risk monitoring isn’t just a compliance upgrade. It’s a competitive advantage. By weaving continuous monitoring and behavioral insights into third-party risk management, executives can:

Protect against operational and financial losses. Demonstrate resilience to regulators. Build stronger trust signals with investors, customers, and suppliers.

👉 Dive deeper in the Market & Buyer’s Guide for Third-Party Risk Management and explore the Cybersecurity, Operational, and Regulatory Link Indexes to see how leading enterprises are raising the bar.

👉 Watch our Webinar on TPRM Strategy & Stronger Risk Management to hear how leaders are operationalizing these shifts in real time.

The post The Silent Killer in Third-Party Risk: Why Behavioral Red Flags Matter More Than Checklists appeared first on Liminal.co.

Decentralized identity and Verifiable Credentials remove the vulnerabilities driving generative-AI, social engineering, and synthetic identity fraud at a significantly lower cost than legacy or alternative solutions. How? The technology allows you to just bypass these problems. With Indicio Proven, you get authentication and fraud prevention in a single, affordable, globally interoperable platform.

By Trevor Butterworth

The new report by Liminal — The Convergence of Authentication and Fraud Prevention — makes for stark reading.

Fraud losses in the U.S. alone are projected to double in just three years to $63.9 billion, with account takeover fraud accounting for half. Seventy-one percent of respondents to their survey of 200 buyers in retail, ecommerce, financial services and tech believe current methods of authentication may be insufficient to thwart generative-AI social engineering attacks. And almost two-thirds worry that additional security layers will add unacceptable friction to customer and user experience.

One could say the problem is that the technology powering fraud is more powerful than the technology powering authentication and fraud prevention. And the latter’s weakness is compounded by authentication and fraud prevention being two separate processes, often managed by multiple different vendors.

The solution is more of everything — more layers of defense, multi-level signals analysis, more authentication factors, and good AI to battle the bad AI. All of which translates into more complexity, friction, and cost. No surprise, Liminal also reports increasing budgets for authentication, account takeover protection, and social engineering scam prevention, and it projects these budgets will continue increasing year-on-year.

Meanwhile, customers and consumers — many of whom are digital natives — expect seamless, frictionless interaction and not painful multifactor authentication. As a result, organizations face brutal tradeoffs: cater to digital behavior and increase risk, or decrease risk but make customers pay in friction and risk losing them.

Fix the fundamental problem

There’s a reason the technology powering fraud has the upper hand: The legacy systems organizations rely on — username/password,  stored biometrics, centralized databases filled with personal data — are all vulnerabilities easily exploited by brute-force AI attacks, synthetic identity fraud, and deepfakes.

Remove these vulnerabilities and you remove these problems. That’s what decentralized identity does. It removes the need for usernames, passwords, and the centralized storage of personal data needed to manage identity and access.

That’s what Indicio’s customers are doing — sweeping away the digital structures and processes that are the cause of all these problems.

We replace this with Verifiable Credentials. They’re a simple way for each party in a digital interaction — customers, organizations, employees, devices, virtual assistants — to authenticate the other in a way that can’t be phished, hacked, or faked; and we do this authentication before any data is shared.

Verifiable Credentials reduce fraud by enabling digital credentials to be bound to individuals in a way that is cryptographically tamper-proof, and which can incorporate biometrics that have been authenticated. This closes off attack vectors like phishing, synthetic identities, and — with an authenticated biometric in a Verifiable Credential — deepfakes.

A person with an authenticated biometric in a Verifiable Credential has a portable digital proof of themselves that can be instantly corroborated against a liveness check.

A decentralized identity architecture changes everything. It integrates authentication and fraud prevention, creates unified digital identities, and enables data to be fully portable, trusted and acted on immediately — without friction to businesses or customers.

Just as important, it’s significantly less expensive than legacy or alternative solutions; it can be layered into existing systems, meaning that it’s a solution that, depending on the scope, can be implemented in days or weeks.

Don’t take our word, see what our customers are doing

Indicio and its customers — enterprises, financial services,  governments — have had enough of the same old same old. We and they are using Verifiable Credentials to cross borders, onboard customers, and authenticate account access — all seamlessly with the highest level of digital identity assurance.

It might be hard to believe that a solution could be that simple — that you can just remove the core vulnerabilities fueling the surge in identity-related fraud and not have to rip and replace your entire authentication infrastructure.

Contact us to see a demo — and discover how Indicio Proven is being used as a single authentication and fraud prevention system to create seamless and trusted digital interaction.

The post How decentralized identity delivers next generation authentication and fraud prevention appeared first on Indicio.

Discover Fastly's Pillars of Resilience: unwavering availability, minimized latency, and disruption resistance for a robust internet experience with our global network.

We sat down with Carlo Maragliano from digital platform Finologee to explore how financial institutions are getting ready for the evolving regulatory landscape and how they use technology to accelerate their go-to-market while staying audit-ready and resilient. 

As new regulations such as eIDAS 2.0, AMLR and DORA reshape the compliance landscape across Europe, financial institutions are under pressure to future-proof their onboarding and KYC processes.

Luxembourg-based Finologee, a leading digital platform operator for the financial industry, is helping banks and payment institutions meet regulatory challenges through its KYC Manager, an orchestration layer that combines flexibility with embedded regulatory readiness. By integrating IDnow’s automated identity verification technology, Finologee enables its clients to accelerate go-to-market, simplify compliance and tailor onboarding journeys across regions. With Carlo Maragliano, Head of Delivery and Customer Success at Finologee, we discussed how technology, automation and orchestration are transforming digital identity at scale.

Navigating the evolving regulatory landscape Regulations such as eIDAS 2.0, AMLD6 and DORA are coming into force soon. How are the changes brought about by these regulations influencing you and your banking clients’ KYC and digital onboarding priorities?

Heightened regulatory complexity is pushing banks to adopt more modular and future-proof KYC solutions. These upcoming regulations are significantly reshaping compliance priorities for financial institutions. For example, eIDAS 2.0 introduces Qualified Electronic Identity (QeID), which makes interoperability and eID support essential. AMLD6 expands criminal liability and due diligence obligations, which increases the need for granular audit trails and automated, risk-based workflows. And with DORA, operational resilience becomes a key focus, requiring stronger vendor oversight, digital continuity and secure third-party integrations. Finologee’s orchestration layer, combined with IDnow’s embedded identity verification, equips institutions to meet these regulatory shifts without having to re-engineer their core systems. 

IDnow’s Automated Identity Verification 

IDnow provides a fully automated identity verification solution that integrates seamlessly with Finologee’s KYC Manager. It supports document authentication from more than 215 international issuing authorities, uses AI-driven checks and biometric liveness detection and helps banks and other regulated industries to reduce onboarding times while ensuring full regulatory compliance. This technology enables companies to verify the identities of their users seamlessly and securely.

Ensuring adaptability in a dynamic regulatory environment How do you ensure that your solutions remain adaptable as regulations and customer expectations continue to evolve?

We’ve built everything on an API-first modular architecture that enables quick adaptation to regulatory shifts. On top of that, Finologee continuously engages with clients to align roadmap priorities with industry changes. The platform is also fully customisable and configurable, so institutions can tailor onboarding flows, verification steps and compliance logic to specific regulatory requirements, customer segments and regional markets without extensive development effort.

Did you know? Over 55% of consumers are more likely to apply for services if the onboarding process is entirely digital, including online identity verification.

The role of automation in scaling operations What role does automation play in helping banks scale their operations without sacrificing security or compliance?

Automation is really important for all businesses. It reduces dependency on manual reviews, thus lowering both cost and error rates. Automated decisioning also helps apply consistent compliance logic. With real-time workflows, customers can be onboarded faster without sacrificing auditability, while compliance teams gain transparency and control through dashboards and exception handling flows. 

What challenges do financial institutions face when trying to scale their compliance and onboarding processes across multiple markets and how does KYC Manager help overcome these hurdles?

Scaling across markets brings several hurdles. Institutions face varying regulatory requirements across countries, different acceptable ID document types and verification standards, and operational silos that slow down onboarding harmonisation. With KYC Manager, we address these challenges through a centralised orchestration layer with localised compliance modules, document coverage across 157 countries enabled by IDnow and a flexible flow builder that allows journeys to be adapted by region or customer type.

Did you know? Banks that increased end-to-end KYC-process automation by 20% saw a triple benefit effect : increased quality-assurance scores by 13%; improved customer experience by reducing the number of customer outreaches per case by 18% and enhanced productivity by increasing the number of cases processed per month by 48%. In what ways does the integration between Finologee’s KYC Manager and IDnow’s automated identity verification technology enable faster go-to-market for banks and other financial institutions? Can you share a concrete example?

Because identity verification is pre-integrated, deployment timelines are shortened considerably. This means clients such as banks or other financial institutions can launch new services or expand to new markets faster thanks to embedded regulatory readiness.  

A concrete example: the IDnow verification flow is especially useful when identifying ultimate beneficial owners (UBOs) and persons with significant control (PSCs), so people who ultimately own or control their company and are legally required to identify during onboarding. If the person responsible for their dossier doesn’t have their IDs, they can trigger an SMS to the phone number of the UBO or PSC to complete the verification directly. 

Scaling across markets and customization How do you support financial institutions in customizing onboarding journeys for different regions or customer segments?

The Finologee KYC platform enables journey segmentation by geography, product line or a risk profile. For instance, workflow logic can automatically route high-risk users to manual review or enhanced due diligence paths.

Looking ahead, what trends do you anticipate will most impact the way banks approach digital identity and compliance at scale?

We see AI and biometrics becoming standard components of fraud prevention. There will also be greater emphasis on accessibility, inclusivity and cross-device onboarding. And more broadly, banks and other financial institutions will be looking to reduce fragmentation through orchestration platforms.

On a personal level, what excites you most about working at the intersection of technology, compliance and financial services? Is there a particular moment or project that made you feel especially proud of the impact you’re making?

For me, it’s seeing how all the pieces come together in practice. One moment that really stood out was supporting a client launch in Luxembourg under tight regulatory deadlines they needed to comply with. It was a great example of how the platform can unlock speed, compliance, and user experience all at once – we successfully implemented KYC Manager within just three months, enabling a fully digital account opening process with no paper or printing requirements. On average, our clients see the submission process reduced to under 10 minutes and conversion rates doubled compared to traditional KYC remediation processes, while substantially lowering human error and workload.

Interested in more from our customer interviews? Check out: Docusign’s Managing Director DACH, Kai Stuebane, sat down with us to discuss how secure digital identity verification is transforming digital signing amid Germany’s evolving regulatory landscape. DGGS’s CEO, Florian Werner, talked to us about how strict regulatory requirements are shaping online gaming in Germany and what it’s like to be the first brand to receive a national slot licence.

By

Nikita Rybová
Customer and Product Marketing Manager at IDnow
Connect with Nikita on LinkedIn

Voor de HypoVak-special van InFinance schreef Gert Vasse de volgende column:
AI lijkt al snel een BFF © (best friends forever) te worden. Het duikt in rap tempo op in allerlei handige toepassingen. Sindskort geeft bijvoorbeeld Google bij veel zoekopdrachten een handig AI-overzicht. Die functie bespaart je veel zoekwerk en geeft een goede samenvatting inclusief bronvermeldingen.

Betrouwbare en veilige klantidentificatie is binnen de financiële sector een kernvoorwaarde om te voldoen aan wet- en regelgeving (Wwft, AML5, eIDAS, AVG). Met de introductie van ID-Wallets en eIDAS2.0 in 2028/2029 zal vanuit de overheid een structurele oplossing voor veilige digitale identificatie worden geboden.

Incomplete dossiers, ontbrekende documenten, langdurige doorlooptijden. Het verzamelen van klantdata is in veel kredietprocessen nog een tijdrovende stap. Er zijn meerdere contactmomenten nodig, aangeleverde gegevens zijn onduidelijke en er is het risico op fouten of fraude.

“With the right motivation, even I will write a blog post on a dare. And the dare I got today was to write a post about what librarians and pirate captains have in common, and why it matters for standards development.”

(If you can’t have fun when writing, what’s the point?)

I’m sure you all want to know what on earth THAT conversation was about. It started with the desire to assign vanity titles to friends. One friend was assigned “Intrepid bass-playing sailor cyber warrior” (though that one is possibly still a work in progress). So, of course, I had to ask what my title would be.

She thought something pirate-based. I thought maybe mob boss was more appropriate. But, no: “Nah, you don’t rule through fear. You set rules, and then people come to learn that obeying the rules brings progress while disobeying the rules brings a walk down the plank. Very impersonal, no bloodshed, just terminal disapproval.” Which I read not so much as Pirate as Librarian, and in either case, reminds both of us of what the standards development process is like.

In a way, this builds on a post I wrote a few weeks ago about needing all kinds of people and skills to develop good standards.

A Digital Identity Digest Pirates, Librarians, and Standards Development Play Episode Pause Episode Mute/Unmute Episode Rewind 10 Seconds 1x Fast Forward 30 seconds 00:00 / 00:07:50 Subscribe Share Amazon Apple Podcasts CastBox Listen Notes Overcast Pandora Player.fm PocketCasts Podbean RSS Spotify TuneIn YouTube iHeartRadio RSS Feed Share Link Embed

You can Subscribe and Listen to the Podcast on Apple Podcasts, or wherever you listen to Podcasts.

And be sure to leave me a Rating and Review!

Librarians and pirates: unlikely comparisons

On the surface, librarians and pirates couldn’t be more different. One rules a quiet, organized room full of catalogues and classification systems. The other shouts orders across a storm-tossed deck, treasure map in hand.

But scratch at the stereotypes, and the similarities pop up:

Both guard treasure — knowledge or gold. Both rely on codes that aren’t strictly laws, but that everyone learns to respect. Both lead crews (or patrons) who don’t always agree but who need to move in the same direction. And both know that without discipline, the whole ship — or library — quickly sinks.

Standards development, in its own way, needs a bit of both. Librarians bring order, taxonomies, metadata, and interoperability. Pirates bring the consequences: if you won’t play along with the standard, good luck finding allies or charting your course without a map.

Leadership characteristics

So what’s actually useful, whether you’re wrangling sailors, cataloguing a collection, or chairing a standards meeting?

Ability to engage people so they pay attention. Whether it’s a weary deckhand, a confused student, or a standards group at the two-hour mark, keeping attention is half the battle. Ability to raise one eyebrow sternly. Every ship, library, or working group needs That Person. The person who has one eyebrow that says: “Are you sure you want to keep going down that path?” Sometimes it’s more effective than three paragraphs of meeting minutes. Ability to lead people to their own conclusions. Neither pirate captains nor librarians hand you the final answer. The captain points at the map and lets you realize the treasure’s yours to dig up. The librarian nudges you toward the right catalogue entry. In standards, this is the art of facilitation — nudging until consensus emerges. What doesn’t work Leading purely through fear. Fear doesn’t build commitment — it drives people away. Pirates who rule by terror end up facing mutiny, and librarians who inspire only dread will find books mysteriously mis-shelved out of spite (I hate it when that happens). In standards, disengagement is fatal: if people only show up to avoid backlash, the work stalls and the draft sinks. Letting others set the tone of fear. A crew ruled by grudges goes nowhere, and a library ruled by petty turf wars becomes unusable. The same is true in standards: if flame wars and side agendas become scarier than the actual process, people stop showing up; without participation, no standard survives. Romance, intrigue, and life

Obviously, this is a very romanticized version of a pirate (and of a librarian, for that matter). Real librarians don’t spend their time swashbuckling, and real pirates were often violent criminals (also without the swashbuckling). But when I’m not writing, editing, researching, or running meetings, I’m reading trashy romance novels. Romanticized life in my spare time is my idea of entertainment.

And maybe that’s the point: we bring our own metaphors and stories to how we think about leadership and collaboration. Whether you fancy yourself the stern-eyebrowed librarian or the captain with a plank, the truth is that standards need both. Someone to keep the ship steady, someone to keep the records straight, and all of us learning when to raise an eyebrow at just the right time.

Hopefully, this post made you smile. And if it didn’t, I have a Very Stern Look at the ready for you.

If you’d rather track the blog than the podcast, I have an option for you! Subscribe to get a notification when new blog posts go live. No spam, just announcements of new posts. [Subscribe here] 

Transcript Introduction

00:00:31 Hello and welcome back to A Digital Identity Digest.

00:00:35 Today’s episode comes from a dare. And honestly, if you know me, you’ll understand that’s a very dangerous way to start anything.

The dare was simple: write a post about what librarians and pirate captains have in common and why that matters to standards.

How could I say no to that?

00:00:52 Because let’s be honest—if you can’t have fun with your writing, what’s the point?

Pirates and Librarians: Not So Different

00:00:57 At first glance, pirates and librarians couldn’t be more different.

Pirates live on the high seas, sword in hand, shouting orders across storm-tossed decks. Librarians work in hushed halls, surrounded by catalogs and metadata, raising an eyebrow when needed.

And yet, if you look closely, there’s surprising overlap.

00:01:25 This all started with a conversation about vanity titles—those fun, unofficial roles we give each other.

A friend was dubbed the Intrepid Bass-Playing Cyber Sailor Warrior. Mine was harder: pirate? mob boss? librarian?

00:02:06 The final suggestion landed: I don’t rule through fear—I set rules. And when followed, they bring progress. Ignore them, and… well, it’s a walk down the plank.

That sounded far less like a pirate and far more like a librarian—which is fitting, since I have a degree in library science.

Shared Treasures and Shared Codes

00:02:24 So, what do pirates and librarians actually do?

Pirates guard treasure: gold, jewels, captured loot. Librarians guard knowledge: books, archives, collections, and digital resources.

00:02:42 Both operate according to a code.

Pirates had their Pirate Code—rules about dividing loot, settling disputes, and running the ship. Librarians have cataloging standards, metadata schemas, and classification systems.

00:03:08 Neither set of rules carries the weight of law, but ignoring them leads to chaos.

00:03:19 And both depend on their crews. Pirates don’t sail alone; librarians don’t run libraries without staff, volunteers, and community support.

This is the essence of standards development:

Gathering crews Establishing codes Protecting shared treasure (protocols, specifications, best practices)

Ignore the structure, and everything sinks fast.

The Keys to Leadership

00:03:39 So, what makes leadership work—whether on a ship, in a library, or in a standards group?

00:03:53 First: the ability to engage people.

Pirates had to keep their crews motivated. Librarians help people navigate information overload. Standards leaders cut through noise and keep focus.

00:04:02 Second: the power of the raised eyebrow.
Every community has that one look that says: “Are you sure you want to go down that path?” Subtle signals can be powerful leadership tools.

00:04:22 Third: leading people to their own conclusions.

Pirates pointed to treasure maps. Librarians point to catalogs and shelves. Standards leaders facilitate consensus rather than forcing agreement. What Doesn’t Work

00:04:41 Now, let’s talk about what doesn’t work.

Leading through fear. Fear breeds disengagement. Pirates who ruled by terror faced mutiny. Librarians who ruled by dread found books deliberately mis-shelved. In standards, disengagement kills progress. Letting others set the tone of fear. If grudges rule the ship, it goes nowhere. If turf wars rule a library, the whole community suffers. If flame wars dominate standards groups, the work halts.

Leaders must set the tone. If fear takes over, participation drops—and without participation, nothing survives.

Romanticizing the Metaphor

00:05:43 If you’ve stayed with me this long, you’re probably either giggling or dismayed.

Yes, this is a romanticized version of pirates and librarians.

Real pirates were often violent criminals. Real librarians are not criminals—and do far more than raise their eyebrows.

00:06:13 But that’s exactly what makes the metaphor fun. We all bring our own stories into how we think about leadership and collaboration.

The Balance We Need

00:06:24 Whether you see yourself as a pirate captain, a librarian, or something in between, the truth is: standards need both.

Someone to keep the ship steady. Someone to keep the record straight. And all of us knowing when to raise that well-timed eyebrow.

00:06:41 This episode was short—part reflection, part fun—but with a reminder: standards are made by people. People with quirks, with stories, and sometimes with pirate hats or card catalogs.

Closing Thoughts

00:06:56 Thanks for listening to A Digital Identity Digest.

If you enjoyed this episode:

Subscribe and share it with someone who needs to know that standards don’t have to be boring. Connect with me on LinkedIn at @hlflanagan. Leave a rating or review on Apple Podcasts or wherever you listen.

00:07:14 You can also find the written post at sphericalcowconsulting.com.

Stay curious, stay engaged, and let’s keep these conversations going.

The post Pirates, Librarians, and Standards Development appeared first on Spherical Cow Consulting.

Looking for the perfect game night? Whether you’re a seasoned tabletop veteran or just getting started, the world of board games offers endless fun and strategy. But with thousands of games to choose from, how do you find the true classics that stand the test of time? This comprehensive guide cuts through the noise to bring you The Ultimate List of Best Board Games of All Time You Must Play. We’ve curated a list of essential games – from timeless classics to modern masterpieces – that are guaranteed to deliver unforgettable experiences with friends and family.

The Ultimate List of Best Board Games of All Time

Catan

A classic strategy game where players trade resources and build settlements to expand their empire.

Pandemic

A cooperative game where players team up to stop global disease outbreaks and save the world.

Ticket to Ride

A strategic game for all ages, focusing on planning and connecting train routes across a map.

Settlers of Catan

A negotiation-driven game where players develop settlements and trade in a shared world.

Carcassonne

A tile-laying game where players build medieval villages and score points strategically.

Ticket to Ride – Europe

An enhanced version with tunnels and stations, adding complexity to train route planning.

Azul

An artistic tile-placement game with stunning design, challenging players to create beautiful patterns.

7 Wonders

A card-based strategy game where players build civilizations through ages of development.

Wingspan

A relaxing engine-building game themed around collecting and managing bird species.

Twilight Imperium

An epic space conquest game designed for advanced players seeking deep strategy.

When diving into a new board game, understanding the rules is half the battle. You can use Herond Browser to explore game rules online effortlessly and securely. With its built-in ad and tracker blocker, Herond provides a clean, distraction-free environment, so you can focus on complex rulebooks or video tutorials without annoying pop-ups. Its seamless design makes it easy to switch between game guides and other resources, ensuring you can quickly master any game and get straight to the fun.

How to Choose the Best Board Game

Player Count & Age Range

Think about who you’re playing with. Some games are designed for two, while others need a larger group. Check the recommended age to ensure it’s a good fit for everyone.

Game Length & Complexity

Consider how much time you have and how much effort you want to put in. Choose a light, fast-paced game for a quick session or a complex, long-form strategy game for an all-day event.

Genre & Theme

What kind of experience are you looking for? Pick a genre that appeals to your group, whether it’s cooperative, competitive, party-style, or a deep, story-driven adventure.

Tips for an Enjoyable Board Game Experience

Here are some tips to help you and your group have the best board game night possible.

Understand the Rules Before You Start

Nothing slows down a game more than trying to learn the rules as you go. Before game night, have one person read the rulebook and watch a video tutorial. They can then teach others, making the setup much smoother.

Create the Right Atmosphere

Set the mood for your game. If it’s a long, strategic game, make sure everyone has comfortable seating and good lighting. For a party game, put on some background music and have snacks and drinks ready.

Manage Expectations

Be upfront with your group about what kind of game you’re playing. If it’s a competitive game, remind everyone to keep it friendly. If it’s a long one, let people know how long it might take so they can plan accordingly.

Put Away Distractions

Encourage everyone to put their phones away. This helps players stay focused on the game, makes for better conversation, and ensures everyone is engaged in the experience.

Where to Buy or Play These Board Games Online

You have a couple of great options for getting your hands on these games, whether you prefer the physical version or want to play digitally.

Where to Buy Physical Board Games

Specialty Board Game Stores

For the best selection and expert advice, visit local or online hobby stores. These shops often have knowledgeable staff and a curated collection of both classic and new games.

Large Online Retailers

Major online marketplaces like Amazon offer a huge variety of games, often with competitive prices and fast shipping. Just be sure to check the seller’s reviews to ensure you’re getting a genuine product.

Where to Play Board Games Online

Board Game Arena

This is one of the most popular platforms for playing a wide range of board games in your browser. It’s user-friendly, automates the rules for you, and offers a large community for real-time and turn-based play.

Tabletop Simulator

If you prefer a more realistic, sandbox-style experience, this is a great choice. Available on Steam, it’s a digital physics sandbox where you can move pieces and interact with games just like you would on a real table.

Dedicated Game Apps

Many popular board games, like Catan or Wingspan, have their own official digital apps available on platforms like Steam, iOS, or Android. These apps often feature polished graphics and a streamlined interface.

Conclusion

No matter if you’re a seasoned gamer or just starting out, the perfect board game is waiting for you. This list represents the best of the best, with games that have stood the test of time and created countless unforgettable memories. From quick, competitive rounds to deep, cooperative adventures, there’s a game here for every group and occasion. So, gather your friends and family, choose a game from this ultimate list, and get ready to roll the dice on your next great game night.

DOWNLOAD HEROND About Herond

Herond Browser is a Web browser that prioritizes users’ privacy by blocking ads and cookie trackers, while offering fast browsing speed and low bandwidth consumption. Herond Browser features two built-in key products:

Herond Shield: an adblock and privacy protection tool; Herond Wallet: a multi-chain, non-custodial social wallet.

Herond aims at becoming the ultimate Web 2.5 solution that sets the ground to further accelerate the growth of Web 3.0, heading towards the future of mass adoption.

Join our Community!

The post The Ultimate List of Best Board Games of All Time You Must Play appeared first on Herond Blog.

The post The Ultimate List of Best Board Games of All Time You Must Play appeared first on Herond Blog.

77% of developers want to code sustainably, but most lack the tools to measure impact. Fastly’s survey reveals the barriers and opportunities in green coding.

If you love travelling, you know the value of unlimited possibilities. That’s why you’re going to want to travel with MySudo app.

MySudo is the original all-in-one privacy app that lets you protect your identity and your information with second phone numbers, secure email, private browsers, and virtual cards – all wrapped into secure digital profiles called Sudos.

Every MySudo feature is handy for international travel, but it’s using the phone numbers for free international calls that will really save you money while you’re away.

But even if you’re not about to hop on a plane, MySudo is still your go-to for free international calls to family and friends.

Here’s how to use MySudo for free international calls whether you’re travelling overseas or calling loved ones from home:

Overseas traveller

If you’re travelling overseas, MySudo gives you free international calling in a choice of regions and area codes. That means no fees and no need for an international roaming plan. Here’s how to set it up:

Download MySudo for iOS or Android. Choose Sudo Max plan for unlimited minutes and messages for up to 9 separate Sudo phone numbers. (Read: What do I get with SudoMax?) Choose a phone number and area code in the region you want to travel. MySudo numbers are currently available in the US, UK*, and Canada. Call and message anyone for free within the region under your SudoMax plan. Give your Sudo number to locals and they can call you as if it’s a local call (and you can avoid high inbound charges).

So long as you’ve got access to hotel or public wi-fi you can use MySudo for free calls. If you think you’ll be out of WiFi range sometimes, you can get an e-sim or international data roaming plan to use local data and MySudo will also work with those.

Calling loved ones from home

MySudo lets you call anyone anywhere in the world for free so long as the person you’re calling is using MySudo. Calls between users are end-to-end encrypted, so you can talk privately and securely. Here’s how to Invite your friends to MySudo:

Tap the menu in the top left corner. Tap Invite your friends. Choose to invite your friends from your device via another app or from your MySudo account.  Select the Sudo you want to invite from (if you have more than one Sudo). Follow the prompts.

After you’ve invited a friend, they will receive a link with your MySudo contact information (email, handle and phone number if you have one), which will prompt them to install MySudo. Once they have the app installed, they can instantly start communicating with you. Remember, all video and voice calls, texts and email between MySudo users are end-to-end encrypted.

But wait, there’s more …

7 more facts about MySudo phone numbers MySudo numbers are real, unique, working phone numbers. Each phone number has customizable voicemail, ringtones, and contacts list. You can also mute notifications and block unwanted callers. MySudo numbers are fully functional for messaging, and voice, video and group calling.  Calls and messages with other MySudo users are end-to-end encrypted. Calls and messages out of network are standard. MySudo phone numbers don’t expire. Your phone numbers will auto-renew so long as you maintain your paid plan. Calling with MySudo works like WhatsApp or Signal, but with the privacy advantage that you’re not handing over your real number to sign up. You can manage multiple numbers all in one app (read: How to Get 9 “Second Phone Numbers” on One Device). Under SudoGo plan, you get 1 included phone number; under SudoPro plan, you get 3 included phone numbers; and under SudoMax plan, you get 9 included phone numbers. If you need additional phone number resets, you can purchase them within the app for a small fee. You can always check your plans screen to see how many phone numbers you have remaining before you’ll be prompted to purchase one.

So, to recap how to use MySudo for free international calls:

To make free calls while travelling overseas, choose a Sudo number and area code in your region of travel and get unlimited minutes and messages under SudoMax plan. Available regions are the United States, United Kingdom*, and Canada. To make free, end-to-end encrypted calls anywhere in the world, invite your friends to the app. To call or message regular numbers abroad, use a Sudo number in their region, but sign up to SudoMax so there’s no limit on minutes or messages.

*In order to comply with government and service provider regulations to limit the risk of fraud, users are required to provide their accurate and up-to-date legal identity information before they can obtain UK phone numbers. 
Read: Why are you asking for my personal information when creating a phone number?

Take control and simplify your communication today. Download MySudo.

Before you go, explore the full MySudo suite.

The post How to use MySudo phone numbers for free international calls appeared first on Anonyome Labs.

Predictoor DF154 & DF155 rewards are available. DF156 runs September 18th — September 25th, 2025 1. Overview

Data Farming (DF) is an incentives program initiated by ASI Alliance member, Ocean Protocol. In DF, you can earn OCEAN rewards by making predictions via ASI Predictoor.

Data Farming Round 154 (DF154) completed on September 11th, and DF Round 155 completed on September 18th, both without issues following the restoration of Predictoor. During these rounds, we carefully monitored the Predictoor system and community feedback to ensure users could access Predictoor feeds and claim rewards distributions without any interruption in service.

DF156 is live as of September 18th. It concludes on September 25th. For this DF round, Predictoor DF has 3,750 OCEAN rewards and 20,000 ROSE rewards.

2. DF structure

The reward structure for DF156 is comprised solely of Predictoor DF rewards.

Predictoor DF: Actively predict crypto prices by submitting a price prediction and staking OCEAN to slash competitors and earn.

3. How to Earn Rewards, and Claim Them

Predictoor DF: To earn: submit accurate predictions via Predictoor Bots and stake OCEAN to slash incorrect Predictoors. To claim OCEAN rewards: run the Predictoor $OCEAN payout script, linked from Predictoor DF user guide in Ocean docs. To claim ROSE rewards: see instructions in Predictoor DF user guide in Ocean docs.

4. Specific Parameters for DF156

Budget. Predictoor DF: 3.75K OCEAN + 20K ROSE

Networks. Predictoor DF applies to activity on Oasis Sapphire. Here is more information about Ocean deployments to networks.

Predictoor DF rewards are calculated as follows:

First, DF Buyer agent purchases Predictoor feeds using OCEAN throughout the week to evenly distribute these rewards. Then, ROSE is distributed at the end of the week to active Predictoors that have been claiming their rewards.

Expect further evolution in DF: adding new streams and budget adjustments among streams.

Updates are always announced at the beginning of a round, if not sooner.

About Ocean, DF and ASI Predictoor

Ocean Protocol was founded to level the playing field for AI and data. Ocean tools enable people to privately & securely publish, exchange, and consume data. Follow Ocean on Twitter or TG, and chat in Discord. Ocean is part of the Artificial Superintelligence Alliance.

In Predictoor, people run AI-powered prediction bots or trading bots on crypto price feeds to earn $. Follow Predictoor on Twitter.

DF154, DF155 Complete and DF156 Launches was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

ComplyCube has reinforced its Leader status in G2's 2025 Fall Grid Report. The company has achieved recognition for its ease of implementation and ROI in categories including AML, customer onboarding, and biometric authentication.

The post ComplyCube Named as an AML Industry Leader in the G2 Fall 2025 Report first appeared on ComplyCube.

The post UAE’s Move Beyond OTPs: Biometric Authorization for Seamless Transactions appeared first on uqudo.

Hey folks 👋

We’ve kept busy working on Kin - it’s been two weeks already!

Read on to hear what we’ve been up to, and reach the end for this edition’s super prompt.

What’s new with Kin 🚀 Smarter characters, easier flow ✏

We’ve cleaned up the home screen, and made it possible to edit advisor characters right from the homepage selector.

This way, you can make sure all the sides of Kin are exactly who you need them to be - not just your own custom prompt.

Advisors that advise 🧙‍♂️

Your advisors are no longer passive chat partners - when they’ve got something to say (like wondering whether you’ve remembered that meeting you usually forget), they’ll reach out to you personally with a push notification.

You’re in control of this: feel it’s too much? You can turn down the frequency in the app. But if you like it? You can turn it up too.

Memory that remembers who matters 🫂

Our next memory update means Kin now does a better job of extracting people from your messages into your Kin’s private database.

Conversations about important folks should feel more accurate and natural now, as Kin remembers more of the important stuff about them.

Help getting what you need 💡

We’ve also added advisor interaction reminders and frequency tracking. Now you can see how often you’ve chatted with each advisor, and set up reminders to make sure you’re talking with each advisor as often as you’d like.

Voice mode 🎙

We’ve heard your thoughts loud and clear: voice mode is a favorite, but more stability and longer usage times are needed.

There was also an issue for Android users with headsets - we’ve dealt with that, so now Kin’s voice mode shouldn’t get so confused by wires.

For everything else, we’re working on improvements to make it feel seamless. More soon.

Other fixes & polish 🛠

Removed emojis from filter types for better readability

Tweaked chat font design for smoother legibility

Fixed the journal voice button floating mid-screen (no more runaway buttons)

Cleaned up chat formatting in general

Further fixes for Android keyboard issues (hopefully the last!)

Fixed Journal title generation, so auto-generated titles should work much better now

Resolved the double user issue, for those that had it!

Your turn 💭

Kin is moving fast. We have big plans to reach by the end of the year - and we want to make sure we arrive at a place you love as much as us.

So, like we say every time, there are multiple ways to tell us your thoughts about Kin. Good, bad, strange… we want them all!

You can reach out to the KIN team at hello@mykin.ai with anything, from feature feedback to a bit of AI discussion (though support queries will be better helped over at support@mykin.ai).

For something more interactive, the official Kin Discord is still the best place to talk to the Kin development team (as well as other users) about anything AI.

We have dedicated channels discussing the tech behind Kin, networking users, sharing support tips, and for hanging out.

We also regularly run three casual calls every week, and you’re invited:

Monday Accountability Calls - 5pm GMT/BST
Share your plans and goals for the week, and learn tips about how Kin can help keep you on track.

Wednesday Hangout Calls - 5pm GMT/BST
No agenda, just good conversation and a chance to connect with other Kin users.

Friday Kin Q&A - 1pm GMT/BST
Drop in with any questions about Kin (the app or the company) and get live answers in real time.

You’re the centre of this conversation - make sure you take your place. Kin’s for you, not for us.

Finally, you can also share your feedback in-app. Just screenshot to trigger the feedback form!

Our current reads 📚

Article: How people really use AI (Claude vs ChatGPT)
READ - thedeepview.co

Report: Mobile app trends in Denmark
READ - franma.co

Article: Apple launch the iPhone 17 pro, featuring the new A19 chipset built with running LLMs in mind (making a truly-local Kin instance more possible)
READ - Apple

Report: a16z’s app affinity scores for AI users (what other AI apps are users of particular AI most likely to have?)
READ: Olivia Moore via x

This edition’s super prompt 🤖

This time, we’re asking your Kin:

What kind of support do I best respond to?”

If you have Kin installed and up to date, you can tap the link below (on mobile!) to explore how you think about pressure, and how you can keep cool under it.

As a reminder, you can do this on both iOS and Android.

Try prompt in Kin

This is your journey 🚢

Kin always has been and always be for you as users. We want to build the most useful and supportive AI assistant we can.

So, please: email us, chat in our Discord, or even just shake the app to reach out to us with your thoughts and ideas.

Kin is only what our users make of us.

With love,

The KIN Team

One of the 2025 bot trends which will continue into the future is the use of GenAI-powered technology to spearhead attacks on both private business and critical infrastructure.

This rising trend has been growing at a pace since 2023 and shows no sign of slowing down and, according to many reports, is likely to become an even greater threat.

The post 2025 bot trends see rise of Gen-AI continuing appeared first on Veracity Trust Network.

As AI agents and AI threats proliferate at an unprecedented rate, it becomes imperative to enable them to communicate safely with the backend systems that matter the most.

A Model Context Protocol (MCP) server acts as the bridge between an LLM and an external system. It translates natural language intent into structured API calls, enabling agents to perform tasks like provisioning users, managing groups, or pulling reports, all while respecting the system’s security model. Establishing a universal protocol eliminates the need to build custom integrations. Enterprises can now easily connect their AI agents with Okta’s backend systems to achieve automation of complex chains of activities, quick resolution of issues, and increased performance throughput.

Table of Contents

What the Okta MCP Server brings Tools and capabilities Highlights at a glance Getting started with the Okta MCP Server Initializing the project Authentication and authorization Configuring your client Using the Okta MCP Server with VS Code Enable agent mode in GitHub Copilot Update your VS Code settings Start the server Examples in action Read more about Cross App Access, OAuth 2.0, and securing your applications What the Okta MCP Server brings

The Okta MCP Server brings this capability to your identity and access management workflows. It connects directly to Okta’s Admin Management APIs, giving your LLM agents the ability to safely automate organization management.

Think of it as unlocking a new interface for Okta, one where you can ask an agent:

“Add this new employee to the engineering group.” “Generate a report of inactive users in the last 90 days.” “Deactivate all users who tried to log in within the last 30 minutes.” Tools and capabilities

In its current form, the server allows the following actions:

User Management: Create, list, retrieve, update, and deactivate users. Group Management: Create, list, retrieve, update, and delete groups. Group Operations: View assigned members, view assigned applications, add, and remove users. System Information: Retrieve Okta system logs.

And many more actions with application and policies APIs as well.

Using the above operations as a base, complex real-life actions can also be performed. For example, you can ask the MCP server to generate a security audit report for the last 30 days and highlight all changes to user and group memberships according to your desired report template.

Highlights at a glance Flexible Authentication: The server supports both interactive login (via Device Authorization Grant) and fully automated, browserless login (via Private Key JWT). Whether you’re experimenting in development or running a headless agent in production, you can authenticate in the way that fits your workflow. More Secure Credential Handling: Your authentication details are managed through scoped API access and environment variables, keeping secrets out of code. Tokens are issued only with the permissions you explicitly grant, following least-privilege best practices. Seamless Integration with Okta APIs: Built on Okta’s official SDK, the server is tightly integrated with Okta’s Admin Management APIs. That means reliable performance, support for a wide range of identity management tasks, and an extensible foundation for adding more endpoints over time. Getting started with the Okta MCP Server

Now that you know what the Okta MCP server is and why it’s useful, let’s dive into how to set it up and run it. Before you proceed, you will need VS Code, Python environment (Python 3.9 or above), and uv.

Initializing the project

The Okta MCP server comes packaged for quick setup so you can clone and run it. We use uv (a fast Python package manager) to help ensure your environment is reproducible and lightweight.

Install uv

Clone the repository: git clone https://github.com/okta/okta-mcp-server.git Install dependencies and set up the project: cd okta-mcp-server && uv sync

At this point, you have a working copy of the server. Next, we’ll connect it to your Okta org.

Authentication and authorization

Every MCP server needs a way to prove its identity and access your Okta APIs more securely. We support two authentication modes, and your choice depends on your use case.

Option A: Device authorization grant (recommended for interactive use)

This flow is best if you’re running the MCP server locally and want a quick, user-friendly login. After you start the server, it triggers a prompt to log in via your browser. Here, the server exchanges your browser login for a secure token that it can use to communicate with Okta APIs.

Use this if you’re experimenting, developing, or want the simplest way to authenticate.

Before you begin, you’ll need an Okta Integrator Free Plan account. To get one, sign up for an Integrator account. Once you have an account, sign in to your Integrator account. Next, in the Admin Console:

Go to Applications > Applications Click Create App Integration Select OIDC - OpenID Connect as the sign-in method Select Native Application as the application type, then click Next

Enter an app integration name

Configure the redirect URIs: Redirect URI: com.oktapreview.java-oie-sdk:/callback Post Logout Redirect URI: http://com.oktapreview.java-oie-sdk/ In the Controlled access section, select the appropriate access level Click Save Where are my new app's credentials?

Creating an OIDC Native App manually in the Admin Console configures your Okta Org with the application settings.

After creating the app, you can find the configuration details on the app’s General tab:

Client ID: Found in the Client Credentials section Issuer: Found in the Issuer URI field for the authorization server that appears by selecting Security > API from the navigation pane. Issuer: https://dev-133337.okta.com/oauth2/default Client ID: 0oab8eb55Kb9jdMIr5d6

NOTE: You can also use the Okta CLI Client or Okta PowerShell Module to automate this process. See this guide for more information about setting up your app.

Note: While creating the app integration, make sure to select the Device Authorization in the Grant type.

Once the app is created, follow these steps:

Grant API scopes (for example: okta.users.read, okta.groups.manage).

Copy the Client ID for later use.

Note: Why “Native App” and not “Service”?
Device Auth is designed for user-driven flows, so it assumes someone is present to open the browser.

Option B: Private key JWT (best for automation, CI/CD, and “headless” environments)

This flow is perfect if your MCP server needs to run without human intervention, for example, inside a CI/CD pipeline or as part of a backend service. Instead of prompting a person to log in, the server authenticates using a cryptographic key pair.

Here’s how it works:

You generate or upload a public/private key pair to Okta. The server uses the private key locally to sign authentication requests. Okta validates the signature against the public key you registered, ensuring that only your authorized server can act on behalf of that client.

Use this if you’re automating, scheduling jobs, or integrating into infrastructure.

In your Okta org, create a new API Services App Integration.

Under Client Authentication, select Public Key / Private Key.

Add a public key: either generate it in Okta (recommended) and copy it in PEM format, or upload your own keys.

Copy the Client ID and Key ID (KID).

Grant the necessary API scopes (e.g., okta.users.read, okta.groups.manage) and provide Super Administrator access.

Configuring your client

You can use Okta’s MCP server with any MCP-compatible client. Whether running a lightweight desktop agent, experimenting in a local environment, or wiring it into a production workflow, the setup pattern is the same.

For this guide, we’ll walk through the setup in Visual Studio Code with GitHub Copilot - one of the most popular environments for developers. The steps will be similar if you use another client like Claude Desktop or AWS Bedrock.

Using the Okta MCP Server with VS Code Enable agent mode in GitHub Copilot

The Okta MCP server integrates with VS Code through Copilot’s agent mode.

Install the GitHub Copilot extension Open the Copilot Chat view in VS Code.

To enable the Agent mode, checkout the steps mentioned in the VS Code docs.

Update your VS Code settings

Next, you’ll tell VS Code how to start and communicate with the Okta MCP server. This is done in your settings.json. You can also create your own mcp.json and set this up.

{ "mcp": { "inputs": [ { "type": "promptString", "description": "Okta Organization URL (e.g., https://trial-123456.okta.com)", "id": "OKTA_ORG_URL" }, { "type": "promptString", "description": "Okta Client ID", "id": "OKTA_CLIENT_ID", "password": true }, { "type": "promptString", "description": "Okta Scopes (separated by whitespace, e.g., 'okta.users.read okta.groups.manage')", "id": "OKTA_SCOPES" }, { "type": "promptString", "description": "Okta Private Key. Required for 'browserless' auth.", "id": "OKTA_PRIVATE_KEY", "password": true }, { "type": "promptString", "description": "Okta Key ID (KID) for the private key. Required for 'browserless' auth.", "id": "OKTA_KEY_ID", "password": true } ], "servers": { "okta-mcp-server": { "command": "uv", "args": [ "run", "--directory", "/path/to/the/okta-mcp-server", "okta-mcp-server" ], "env": { "OKTA_ORG_URL": "${input:OKTA_ORG_URL}", "OKTA_CLIENT_ID": "${input:OKTA_CLIENT_ID}", "OKTA_SCOPES": "${input:OKTA_SCOPES}", "OKTA_PRIVATE_KEY": "${input:OKTA_PRIVATE_KEY}", "OKTA_KEY_ID": "${input:OKTA_KEY_ID}" } } } } }

Running the server for the first time prompts you to enter the following information:

Okta Organization URL: Your Okta tenant URL. Okta Client ID: The client ID of the application you created in your Okta organization. Okta Scopes: The scopes you want to grant to the application, separated by spaces. For example: "OKTA_SCOPES": "${input:OKTA_SCOPES = okta.users.read okta.users.manage okta.groups.read okta.groups.manage okta.logs.read okta.policies.read okta.policies.manage okta.apps.read okta.apps.manage}"

Note: Add scopes only for the APIs that you will be using.

Okta Private Key and Key ID: You only need to enter this key when using browserless authentication. If you’re not using that method, just press Enter to skip this step and use the Device Authorization flow instead. Start the server

When you open VS Code, you’ll now see okta-mcp-server as an option to start.

Click Start to launch the server in your mcp.json file.

The server will check your authentication method:

If using Device Authorization, it triggers a prompt to log in via your browser.

If using Private Key JWT, it will authenticate silently using your key.

Once connected, Copilot will automatically recognize the Okta commands you can use.

At this point, the MCP server has established a connection between VS Code and your Okta organization.You can now manage your organization using natural language commands directly in your editor.

Examples in action

1. Listing Users

2. Creating Users

3. Group Assignment

4. Creating an Audit Report

We invite you to try out our MCP server and experience the future of identity and access management. Meet us at Oktane, and if you run into issues, please open an issue in our GitHub repository.

Read more about Cross App Access, OAuth 2.0, and securing your applications Integrate Your Enterprise AI Tools with Cross App Access Build Secure Agent-to-App Connections with Cross App Access (XAA) OAuth 2.0 and OpenID Connect overview Why You Should Migrate to OAuth 2.0 From Static API Tokens How to Secure the SaaS Apps of the Future

Follow us on LinkedIn, Twitter, and subscribe to our YouTube channel for more developer content. If you have any questions, please leave a comment below!

The Rohingya Project today announced the launch of its R-Coin token presale on the PinkSale launchpad, inviting impact-driven and crypto-savvy investors to support an innovative social-impact initiative. R-Coin (RCO) is the native token of the project’s SYNU Platform, a blockchain-based network designed to empower over 3.5 million stateless Rohingya refugees worldwide. By participating in the […]

Facial recognition is no longer just a sci-fi plot twist. It is now a part of daily life, from unlocking smartphones to airport security checks. A face recognition system uses advanced algorithms to scan, analyze, and verify identities in seconds. Businesses, schools, and governments are rapidly adopting it, but it’s worth digging deeper into how it works, its benefits, and what challenges still exist.

 

Facial Recognition System

At its core, a facial recognition system relies on biometric technology. It captures a person’s facial features, converts them into a digital template, and compares that data with stored profiles to confirm identity. Unlike fingerprints or ID cards, you don’t need to touch anything. Just look at the camera, and the system does the rest.

This technology uses complex neural networks trained on thousands of images. The system maps out key points like the distance between eyes, nose shape, and jawline. The result is a unique faceprint that is nearly impossible to duplicate. Accuracy levels are improving quickly thanks to evaluations like the NIST Face Recognition Vendor Test, which tracks the performance of leading algorithms worldwide.

 

How Face Recognition Technology Works

Understanding the process makes it clear why it is so widely trusted. Here’s a simple breakdown:

Image Capture – A camera captures a person’s face in real time.

Face Detection – The system locates the face in the image and isolates it from the background.

Feature Extraction – Algorithms analyze facial features such as cheekbones, chin curves, and lip contours.

Template Creation – The extracted data is turned into a digital faceprint.

Comparison and Match – The faceprint is compared with existing records to confirm identity.

Accuracy rates are consistently improving. According to NIST FRVT 1:1 testing, leading systems now achieve over 99% verification success under ideal conditions.

 

Face Anti-Spoofing and Its Role in Security

Every great lock needs a strong defense. This is where face anti spoofing comes in. Without it, someone could trick the system using a photo, video, or even a 3D mask. Spoofing attempts are surprisingly common in fraud-heavy industries like finance.

Modern systems fight this using liveness detection. The camera checks for natural movements such as blinking, skin texture changes, and depth. Some solutions even shine light on the face and measure reflections to confirm the presence of a real person. These layers of defense ensure that recognition remains both fast and secure.

 

Face Recognition Attendance System

Schools, offices, and even factories are adopting a face recognition attendance system. No more long queues at biometric scanners or manual sign-in sheets. Employees just walk in, glance at a camera, and their presence is automatically logged.

The benefits are clear:

No contact required which keeps it hygienic.

Faster processing compared to manual punching.

Reduced buddy punching where one employee marks attendance for another.

Accurate reporting that syncs directly with payroll systems.

Organizations save time and prevent fraud while employees enjoy a hassle-free experience.

 

Face Scanning Attendance System in Education

Schools and universities are also experimenting with a face scanning attendance system. Teachers can focus on teaching instead of wasting class time marking attendance. Parents get real-time updates if their child is present, while administrators gain detailed records for compliance.

Though promising, it does raise questions about student privacy. Educational institutes must handle such systems responsibly and align with global data protection standards like GDPR.

 

Benefits of Face Recognition in Real-World Applications

Let’s talk numbers and impact. The global facial recognition market is projected to reach over $16 billion by 2030. Here’s why it’s growing so fast:

Security – Airports use it to screen passengers quickly.

Fraud Prevention – Banks use it to stop identity theft.

Convenience – Smartphones unlock instantly with a glance.

Efficiency – Attendance and access control become effortless.

Quick Fact Table:

Application Benefit Example Use Case Banking Stops account fraud Mobile banking logins Airports Speeds up security checks Passport verification Education Saves teaching time Student attendance Workplace Prevents time theft Employee attendance tracking

 

Privacy and Ethical Concerns

As powerful as the technology is, it sparks serious debates. Who owns the face data? How securely is it stored? What if it gets misused? Regulations are starting to catch up. In Europe, GDPR rules require companies to get clear consent before storing or using biometric data.

Transparency and user control are key. People need to know how their face data is being used and have the right to opt out. Striking a balance between security and privacy remains one of the biggest challenges for the industry.

 

Case Studies: Where It Works Best Airports – The U.S. Customs and Border Protection agency reported that facial recognition has caught thousands of identity fraud attempts since its rollout.

Corporate Offices – Large firms in Asia have reduced payroll fraud by adopting face-based attendance.

Healthcare – Hospitals use it to secure patient data and restrict access to sensitive areas.

These case studies highlight how versatile and impactful the technology can be when used responsibly.

 

The Future of Face Recognition

Imagine walking into a store, picking items, and leaving without waiting in line. Payment is automatically processed after the system confirms your face. This futuristic scenario is closer than you think. Retailers are already piloting systems where face recognition replaces credit cards.

At the same time, research is focusing on reducing bias. Early systems struggled with accuracy across different ethnicities. Today, continuous improvements are making recognition fairer and more reliable. Open-source contributions on platforms like GitHub are accelerating innovation by giving developers direct access to tools and data.

 

Conclusion

A face recognition system is more than just a tech buzzword. It is reshaping industries by offering speed, security, and convenience. From attendance tracking to fraud prevention, its applications are only expanding. But with great power comes great responsibility, and balancing innovation with privacy will decide how widely it gets adopted in the future. For organizations exploring the technology, brands like Recognito are paving the way with practical, secure, and developer-friendly solutions.

The Middle East’s crypto scene is no longer a playground for bold experiments. By September 2025, the region is laying down the law, transforming from a sandbox of ideas into a powerhouse of regulated innovation. Dubai’s regulators are cracking the whip, Bahrain’s rolling out bold new laws, and the UAE’s dirham is staking its claim as the backbone of digital payments. This isn’t just a shift — it’s a seismic leap toward a future where compliance fuels growth. Let’s dive into the forces reshaping the region’s crypto landscape.

Dubai: Where Stablecoins Meet Serious Oversight

Dubai’s Virtual Assets Regulatory Authority (VARA) isn’t messing around. Gone are the days of loose guidelines and “let’s see what sticks.” VARA’s 2025 rulebook is a masterclass in clarity, dictating how stablecoins (Fiat-Referenced Virtual Assets) and tokenized real-world assets (RWAs) must be issued, backed, and disclosed. Want to launch a stablecoin or tokenize a skyscraper? You’d better have your paperwork in order.The real game-changer? Enforcement. VARA recently slapped a fine on a licensed firm, sending a crystal-clear message: licenses aren’t just badges of honor — they’re contracts with accountability. Dubai’s saying loud and clear: innovate, but play by our rules. This isn’t just regulation; it’s a blueprint for trust in a digital age.

Abu Dhabi: The Institutional Crypto Haven

While Dubai swings the regulatory hammer, Abu Dhabi Global Market (ADGM) is crafting a different narrative. Its Financial Services Regulatory Authority (FSRA) has fine-tuned its crypto framework to welcome institutional heavyweights. From custody to payment services, ADGM’s rules for fiat-referenced tokens are a magnet for serious players. Yet, privacy tokens and algorithmic stablecoins? Still persona non grata.

ADGM’s approach is a tightrope walk: embrace cutting-edge innovation while ensuring every move can withstand the scrutiny of global finance. It’s less about flashy pilots and more about building a crypto hub that lasts.

UAE’s Central Bank: Dirham Takes the Digital Crown

The Central Bank of the UAE (CBUAE) is drawing a line in the sand. As of September 2025, only dirham-pegged stablecoins can power onshore payments. Foreign tokens? Relegated to niche corners. This isn’t just policy — it’s a bold bet on the dirham as the anchor of the UAE’s digital economy. By prioritizing local currency, the CBUAE is ensuring the UAE doesn’t just participate in the crypto revolution — it leads it.

Dubai’s Real Estate Revolution: Tokenization Goes Big

Remember when Dubai’s tokenized real estate pilots were just a cool idea? Those days are gone. Recent sales, run with the Dubai Land Department, vanished in minutes, pulling in investors from every corner of the globe. The DIFC PropTech Hub is doubling down, turning these pilots into a full-blown movement. Tokenized property isn’t a gimmick anymore — it’s a market poised to redefine how we invest in real estate.

Bahrain and Beyond: The GCC’s Crypto Patchwork

Bahrain’s not sitting on the sidelines. Its new laws for Bitcoin and stablecoins are designed to make trading safer and more attractive to institutions. Meanwhile, Kuwait and Qatar are playing it cautious, keeping their crypto gates tightly shut. The GCC isn’t moving in unison, but the UAE and Bahrain are sprinting ahead, setting the pace for a region-wide crypto renaissance.

The Privacy Puzzle: Navigating the FATF Travel Rule

Behind the headlines lies a thornier challenge: the FATF Travel Rule. Virtual Asset Service Providers (VASPs) now have to share user data across borders, stirring up privacy and operational headaches. Enter Shyft Veriscope, a peer-to-peer platform that lets firms comply without exposing sensitive customer data to centralized risks. In a region obsessed with trust and growth, tools like these are the unsung heroes of crypto’s next chapter.

Why 2025 Is the Year to Watch

The Middle East isn’t just dabbling in crypto anymore — it’s rewriting the rules of the game. From dirham-backed stablecoins to tokenized skyscrapers, the region is building a digital asset economy where compliance isn’t a burden but a springboard. For founders, investors, and innovators, the message is clear: get on board, align with the rules, and seize the opportunity to shape a future where crypto isn’t just a buzzword — it’s a legacy.

About Veriscope

‍Veriscope, the compliance infrastructure on Shyft Network, empowers Virtual Asset Service Providers (VASPs) with the only frictionless solution for complying with the FATF Travel Rule. Enhanced by User Signing, it enables VASPs to directly request cryptographic proof from users’ non-custodial wallets, streamlining the compliance process.

For more information, visit our website and contact our team for a discussion. To keep up-to-date on all things crypto regulations, sign up for our newsletter and follow us on X (Formerly Twitter), LinkedIn, Telegram, and Medium.

Book your consultation: https://calendly.com/tomas-shyft or email: bd@shyft.network

Regulated entities – including PSPs, VASPs, investment platforms, and trust companies – must meet rising KYB and AML expectations. This article highlights emerging requirements across the UAE, UK, EU, Singapore, and U.S.

Regulated entities operate in complex environments where KYB and AML compliance are non-negotiable. Whether your firm is a payment service provider (PSP), virtual asset service provider (VASP), investment platform, corporate services provider, a real estate agent, a mortgage broker, regulators are tightening standards.

In 2025 and beyond, firms must demonstrate robust KYB controls, real-time screening, and jurisdictional audit readiness – especially as rules evolve in key markets like the UK, UAE, and EU.

Emerging Global AML Requirements for Regulated Entities United Kingdom Regulators: Companies House, FCA Shifts: Mandatory KYB and identity verification for directors and PSCs; AML registration and sanctions screening under MLR 2017 United Arab Emirates Regulators: CBUAE, DFSA, VARA, ADGM Requirements: Risk-based onboarding, KYB for corporate clients, Travel Rule compliance, UBO discovery, and localized data handling European Union Regulators: AMLA (in development), national competent authorities Shifts: 6AMLD mandates KYB, UBO transparency, risk scoring, and centralized reporting; MiCA introduces crypto-specific controls Singapore Regulator: MAS Requirements: CDD/EDD obligations, sanctions list monitoring, transaction screening, and UBO tracking for regulated businesses United States Regulators: FinCEN, SEC, CFTC, state agencies Shifts: BOI reporting under the Corporate Transparency Act; mandatory KYB and AML controls for regulated financial service providers Compliance Challenges for Regulated Entities

1. Overlapping Regulatory Bodies
Firms often face scrutiny from sector-specific and national agencies.

2. Diverging Standards
KYB requirements vary across regions, and privacy rules complicate data handling.

3. High-Risk Clients and Transactions
Cross-border payments and digital assets raise red flags.

4. Legacy Compliance Systems
Siloed tools delay onboarding and lack real-time visibility.

iComply: Leading KYB Compliance Software for Global Entities

iComply enables regulated firms to standardize and scale AML workflows across jurisdictions with modular tools and built-in localization.

1. KYB + KYC Automation Verify entities and individuals using real-time registry, document, and biometric checks Visualize UBO networks and flag nominee ownership Encrypted edge processing for global data privacy compliance 2. KYT + Risk Monitoring Monitor transactions for suspicious patterns or volume anomalies Score risk based on client type, geography, and transaction behaviour Trigger escalations and audit-logged alerts automatically 3. Centralized Case Management Unify screening, onboarding, and regulatory review workflows Track every decision, flag, and escalation in one dashboard Export formatted reports for FinCEN, FCA, AMLA, and MAS 4. Deployment + Localization Deploy on-prem, in private cloud, or across multiple regions Jurisdiction-specific policies, thresholds, and audit trails Seamless integration with banking, CRM, and identity tools Case Insight: DIFC-Based Corporate Services Firm

A UAE-regulated corporate services firm implemented iComply’s KYB software to unify compliance across business clients:

Cut onboarding time by 70% Automated UBO and sanctions monitoring Passed DFSA audit with zero deficiencies

As KYB expectations evolve globally, regulated entities must modernize fast. iComply’s compliance software simplifies onboarding, standardizes audit preparation, and supports confident cross-border operations.

Talk to iComply to see how our KYB compliance software helps PSPs, VASPs, and financial institutions stay compliant—no matter where they operate.

Public discourse on social media has grown toxic and divisive. Traditional social platforms drive polarization and outrage because they feed users content through a single, centralized algorithm that is optimized for ad revenue and engagement. Unlike those platforms, Bluesky is building a social web that empowers people instead of exploiting them.

Bluesky started as a project within Twitter in 2019 to reimagine social from the ground up — to be an example of “bluesky” thinking that could reinvent how social worked. With the goal of building a healthier, less toxic social media ecosystem, we spun out as a public benefit corporation in 2022 to develop technologies for open and decentralized conversation. We built Authenticated Transfer so Twitter could interoperate with other social platforms, but when Twitter decided not to use it, we built an app to showcase the protocol.

When we built the app, we first gave users control over their feed: In the Bluesky app, users have algorithmic choice — you can choose from a marketplace of over 100k algorithms, built by other users, giving you full control over what you see. There is also stackable moderation, allowing people to spin up independent moderation services, and giving users a choice in what moderation middleware they subscribe to. And of course there is the open protocol, which lets you migrate between apps with your data and identity, creating a social ecosystem with full data portability. Just today, we announced that we are taking the next step in decentralization.

Although we focused on building these solutions to empower users, we still inherited many of the problems of traditional social platforms. We’ve seen how harassment, vitriol, and bad-faith behavior can degrade overall conversation quality. But innovating on how social works is in our DNA. We’ve been continuously working towards creating healthier conversations. The quote-post used to let harassers take a post out of context, so we gave users the ability to disable them. The reply section often filled up with unwanted replies, so we gave users the ability to control their interaction settings.

Our upcoming product changes are designed to strengthen the quality of discourse on the network, give communities more customized spaces for conversation, and improve the average user’s experience. One of the features we are workshopping is a “zen mode” that sets new defaults for how you experience the network and interact with people. Another is including prompts for how to engage in more constructive conversations. We see this as part of our goal to make social more authentic, informative, and human again.

We’ve also been working on a new version of our Community Guidelines for over six months, and in the process of updating them, we’ve asked for community feedback. We looked at all of the feedback you gave and incorporated some of your suggestions into the new version. Most significantly, we added details so everyone understands what we do and do not allow. We also better organized the rules by putting them into categories. We chose an approach that respects the human rights and fundamental freedoms outlined in the UN Guiding Principles on Business and Human Rights. The new Guidelines take effect on October 15.

In the meantime, we’re going to adjust how we enforce our moderation policies to better cultivate a space for healthy conversations. Posts that degrade the quality of conversations and violate our guidelines are a small percentage of the network, but they draw a lot of attention and negatively impact the community. Going forward, we will more quickly escalate enforcement actions towards account restrictions. We will also be making product changes that clarify when content is likely to violate our community guidelines.

We were built to reimagine social from the ground up by opening up the freedom to experiment and letting users choose. Social media has been dominated by a few platforms that have closed off their social graph and squashed competition, leaving users few alternatives. Bluesky is the first platform in a decade to challenge these incumbents. Every day, more people set up small businesses and create new apps and feeds on the protocol. We are continuing to invest in the broader protocol ecosystem, laying a foundation for the next generation of social media developers to build upon.

Today’s Community Guidelines Updates

In January, we started down the path of updating our rules. Part of that process was to ask for your thoughts on our updated Community Guidelines. More than 14,000 of you shared feedback, suggestions, and examples of how these rules might affect your communities. We especially heard from community members who shared concerns about how the guidelines could impact creative expression and traditionally marginalized voices.

After considering this feedback, and in a return to our experimental roots, we are going to bring a greater focus to encouraging constructive dialogue and enforcing our rules against harassment and toxic content. For starters, we are going to increase our enforcement efforts. Here is more information about our updated Community Guidelines.

What Changed Based on Your Feedback

Better Structure: We organized individual policies according to our four principles – Safety First, Respect Others, Be Authentic, and Follow the Rules. Each section now better explains what's not allowed and consolidated related policies that were previously scattered across different sections. More Specific Language: Where you told us terms were too vague or confusing, we added more detail about what these policies cover. Protected Expression: We added a new section for journalism, education, advocacy, and mental health content that aims to reduce uncertainty about enforcement in those areas.

Our Approach: Foundation and Choice

We maintain baseline protections against serious harms like violence, exploitation, and fraud. These foundational Community Guidelines are designed to keep Bluesky safe for everyone.

Within these protections, our architecture lets communities layer on different labeling services and moderation tools that reflect their specific values. This gives users choice and control while maintaining essential safety standards.

People will always disagree about whether baseline policies should be tighter or more flexible. Our goal is to provide more detail about where we draw these boundaries. Our approach respects human rights and fundamental freedoms as outlined in the UN Guiding Principles on Business and Human Rights, while recognizing we must follow laws in different jurisdictions.

Looking Forward

Adding clarity to our Guidelines and improving our enforcement efforts is just the beginning. We also plan to experiment with changes to the app that will improve the quality of your experience by reducing rage bait and toxicity. We may not get it right with every experiment but we will continue to stay true to our purpose and to listen to our community as we go.

These updated guidelines take effect on October 15, and will continue to evolve as we learn from implementation and feedback. Thank you for sharing your perspectives and helping us build better policies for our community.

How Mobility Leaders Turn Idle Ride Time into Opportunity

Mobility leaders across the globe are searching for a constant communication channel with their end customers. For transit leaders, there are three main touchpoints with their end consumers: Ticketing (Boarding), In-Transit, and Exit (Disembarkation). Most mobility leaders perfect one of the three, leaving possible revenue channels and ideal rider experiences on the table.

What communication channel can be capitalized across all three consumer journey touchpoints within mobility?

The Problem: Current proximity modalities are limited by one of the following: distance, throughput, hardware limitations, and interoperability.

The Solution: LISNR Radius offers a unique proximity modality that changes the way consumers interact throughout the rider journey. Our Radius SDK relies on ultrasonic communication between standard speakers (already installed in transit vehicles and stations) and microphones found in everyday devices like smartphones. By establishing a communication channel directly between the consumer device and the vehicle or station, transit operators can reduce wait times, improve accessibility, capitalize on idle time in transit, and segment their riders for variable pricing. 

Furthermore, LISNR offers Quest, our loyalty and gamification portal, which allows mobility leaders to keep a unified record of key customer interactions. With Quest, mobility leaders can incentivize off-peak rides and partner with nearby shops to offer advertisements directly to a rider in transit.

Talk with Our Team about Mobility Solutions The Proliferation of LISNR-Enabled Digital Touchpoints in Mobility

LISNR empowers businesses to capitalize on the digital touchpoints found in everyday transit experiences. By enabling the delivery of speedy ticketing and personalized offers directly to consumers’ devices, transit operators can engage their riders during all three stages of transit.

Ticketing

Legacy ticketing infrastructure creates long queues, is easy to bypass, and simply doesn’t work without a stable internet connection. Radius redefines this process with our ultrasonic SDK by working at longer ranges than NFC, with more pinpoint precision than BLE, and without a network connection at the time of transaction. Radius is already gaining major traction as a ticketing alternative in the mobility space. With our recent partnership with S-Cube, LISNR has expanded to provide a mass ticketing solution to the busiest transit stations in India.

S-Cube needed a faster and more secure way to enable ticketing for millions of riders. Moreover, S-Cube needed ticketing technology that could perform without a reliable network connection. Radius was able to achieve all of these and more. In testing, S-Cube saw a dramatic increase in rider throughput by switching from QR codes to Radius for ticketed gate access. They moved from processing 35 riders per minute to 60 riders per minute, representing an over 70% improvement.

 

S-Cube uses a Zone 66 broadcast at entry allowing consumers to identify themselves and validate their ticket as they approach the turnstile. Once at the turnstile, consumers can broadcast their account-based ticket information to the ticketing machine (Point1000 on Channel 0 from their device’s speaker). Since they have already been identified and validated, their passengers can breeze through the ticketing process.

See More Product Demos In-Transit Promotion

In-transit promotions are not a new concept, with buses and trains already filled with billboard-like advertising. More recently, rideshare applications have started showing ad space on the home page and key active pages. Unfortunately, these advertisements often go unnoticed, are rarely relevant to the end customer, and for rideshares, are only presented to the paying device. LISNR solves these problems with Radius and Quest.

Using Radius, transit operators can capitalize on idle time in transit by sending promotional offerings directly to all consumers’ devices that are present in the vehicle. For example, businesses at certain stops can target specific riders based on their commute patterns. Furthermore, food/grocery delivery platforms can focus on a tired passenger coming home from work.

By establishing this additional communication channel to their riders, the transit operator can send promotional messages from their partners directly to the most important audiences. By communicating at the device level, promotional offerings can be sent with the preferences of the end customer. Radius’s ultrasonic SDK operates above audible frequencies, meaning that even in noisy conditions, riders are still able to receive their promotions.

By incorporating Quest, transit operators (or their marketing partners) can keep a unified record of customers and the promotions they interact with. Over time, this leads to more relevant promotions and a better experience for marketers and riders alike. With Quest and Radius, transit operators can capitalize on riders’ idle time in transit while establishing a positive connection with them.

Radius tone being broadcast at a frequency higher than human hearing Example of Quest, gamified loyalty for a mobility ecosystem leader Identify the Exit Point

In some modes of transit it’s easy to identify when the consumer exits the vehicle (planes, rideshares), however, most modes of public transit are left in the dark. This lack of visibility into rider disembarkation makes certain variable pricing nearly impossible. With Radius, transit operators can leverage the rider’s microphone when in-app to detect and confirm the presence of the device. With Radius enabled, mobility operators can begin to charge based on a “Be-In-Be-Out” pricing model. These seamless transit experiences are gaining traction with the global contactless transit market projected to grow to $33.5B by 2030 (CAGR ~15%). This major shift is driven by account-based ticketing and distance/usage-based fares (Source: Allied Market Research, 2023). 

LISNR is here to enable transit ecosystem leaders with the technology to support a near-frictionless be-in/be-out user flow for consumers. Our long-range (Zone) ultrasonic tones can broadcast in-vehicle to detect the presence of devices. As riders exit the vehicle, the tones will no longer be detected and the app backend will end the variable pricing model for their trip.

Conclusion

LISNR’s contactless solutions help support the mobility and transit ecosystems across all major digital touchpoints in the consumer journey, from ticketing to exit. With these contactless touchpoints optimized for speed and security, ecosystem leaders can capitalize on variable pricing and answer the growing demand for frictionless experiences; all while establishing new revenue streams with in-transit promotions. 

Our customer loyalty and gamification portal, Quest, can support and optimize consumer touchpoints across the journey. Riders can be incentivized to travel in off-peak hours, receive bonuses for promotions that they convert on, and be rewarded for their achievements such as lifetime rides.

We’ve put together a comprehensive PDF that outlines where LISNR outperforms other contactless technologies commonly found in mobility. If you’re interested in learning more or sharing with a colleague, please feel free to download a copy below.

We’ve created an easily digestible overview of this process, highlighting the digital touchpoints for your passengers. Fill out your contact information below to download a digital copy.

The post How Mobility Leaders Turn Idle Ride Time into Opportunity appeared first on LISNR.

We spoke with Florian Werner, CEO of Deutsche Gesellschaft für Glücksspiel (DGGS), the operator behind the JackpotPiraten and BingBong brands, to understand how strict regulatory requirements under the Interstate Treaty on Gambling (GlüStV 2021) are shaping iGaming in Germany.

From the country’s strong focus on player protection to navigating compliance challenges Werner explains how DGGS balances regulation with player experience – and why trusted partners like IDnow are essential for building a sustainable, responsible iGaming market. 

As one of Germany’s earliest licensed iGaming operators, DGGS has taken on both the pride and responsibility of setting industry standards. With its JackpotPiraten and BingBong brands, the company is committed to combining entertainment with strong compliance and social responsibility. In this interview, CEO Florian Werner shares how DGGS works with regulators, leverages technology to protect players and adapts to the challenges of one of Europe’s most tightly regulated markets. 

Why being first in Germany came with pride – and responsibility  In 2022, DGGS’ JackpotPiraten and BingBong became the first brands to receive a national slot licence from the German regulator, GGL. What did that milestone mean for you as an operator – especially in terms of your responsibility to lead in compliance and player protection?

We were delighted and proud to be the first operator to meet the necessary requirements for entering the German market. At the same time, we are fully aware of the responsibility this entails. That is why we are committed to acting responsibly and have deliberately chosen such an experienced partner as IDnow to stand by our side, supporting us actively in key areas such as player protection, account verification, and the safety of our players.

How does IDnow help you protect your players?

IDnow helps us reliably verify the identity of our players, making sure that no one can play under a false name. At the same time, the solution provides a secure and compliant identity check that effectively prevents underage gaming and fraud. This way, we create a trustworthy and protected environment for all our players.

Why regulation in Germany creates both challenges and opportunities  What were the most significant regulatory and operational challenges you faced in those first months?  

The biggest challenges in the regulated German market have remained unchanged since legalization. These primarily include the high tax burdens in Germany, which have a negative impact on payout ratios and the overall gaming experience of virtual slot machines. In addition, requirements such as a €1 stake limit and the mandatory delay between game rounds (the ‘5-second rule’) pose significant challenges. Since many of these regulations were newly introduced under the 2021 Interstate Treaty on Gambling (GlüStV 2021), a meaningful exchange of experiences was initially difficult. However, we are in contact with various industry representatives and remain hopeful for a more attractive offering for German players in the future.

How does the DGGS work with GGL and other regulators to protect players and combat fraud and how does it stay up to date with any regulatory changes to ensure continuous compliance? 

We are engaged in regular dialogue on multiple levels, collaborating closely with both industry associations and regulatory representatives. In particular our compliance team maintains an ongoing exchange that we experience as collegial, constructive, and open.

Why technology and trusted partners are the backbone of compliance  What role do trusted technology or identity verification partners play in maintaining your compliance and risk posture? 

Verification and identity-check technologies are of vital importance. In Germany, strict regulations rightly govern the handling of personal data. To meet these standards effectively, we rely on experienced external providers whose expertise ensures secure, efficient, and reliable processes at a scale that would not be possible manually.

Why responsible gambling is more than a legal requirement  The German GGL regulation is centred on social responsibility and player protection. What specific measures do you have in place to identify and assist players at risk of gambling harm? 

At our online casinos JackpotPiraten and BingBong, we analyze player behavior and ensure a safe gaming experience. If signs of problematic gambling emerge, we are able to reach out directly to the player and if necessary, exclude them from play. As part of the regulated market, we see this consistent and responsible approach as one of our core duties in protecting players.

How do you ensure that your responsible gambling tools are actually effective? Do you measure outcomes or make improvements based on player feedback or behavioral data? 

We take responsible gambling very seriously and therefore conduct ongoing monitoring of player activity. If signs of problematic gambling behavior are detected and cannot be changed, we can take a range of measures, including the closure of the player’s account.

Can you describe how the OASIS self-exclusion system is integrated into your platform and how you handle self-excluded or returning players? 

Players can exclude themselves at any time directly on our platforms through the OASIS self-exclusion system. In addition, a ‘panic button’ is available, enabling an immediate 24-hour break from play. Once registered with OASIS, players are automatically blocked from accessing our platforms and are prevented from receiving any form of personalized advertising. These measures reflect our strong commitment to responsible gambling and player protection.

What trends are you seeing in player behavior since the introduction of the new regulatory framework? 

In international comparison, German legislation for virtual slot games is very strict. Tax rates are set at a high level, which negatively impacts the payout ratios of the games. In addition, there are stake restrictions and a requirement for a minimum game round duration of five seconds. Players view these measures very critically and often turn to the less restrictive and more attractive offerings of the black market. As a result, tax revenues in Germany from virtual slot games have been continuously declining, an unfortunate negative trend.

Transparency is key in regulated markets. How do you communicate responsible gambling features and policy updates to your players in a clear and proactive way? 

At Deutsche Gesellschaft für Glücksspiel, raising awareness among players about responsible gaming is a core priority. We follow a dual strategy that goes well beyond legal requirements. In line with regulations, we provide a dedicated information section on our platforms that explains how to use gambling products safely. Clear warnings about potential risks are displayed transparently, and players can access support organizations directly through the links we provide.

Going further, we actively engage our players through a regular newsletter and our innovative Slot Academy. Here, education takes place via live video sessions that continuously address the risks of virtual slot games and promote responsible, informed play.

Why entertainment and responsibility can go hand in hand  Looking ahead, what’s next for DGGS? Are there upcoming developments, features, or goals you’re particularly excited about? 

This year we are celebrating the Jackpot Video Awards 2025. The idea for an event together with our players came directly from the community. The Jackpot Video Awards combine entertainment with player protection and are eagerly anticipated by both our team and the players.

Interested in more from our customer interviews? Check out: Docusign’s Managing Director DACH, Kai Stuebane, sat down with us to discuss how secure digital identity verification is transforming digital signing amid Germany’s evolving regulatory landscape.

By

Nikita Rybová
Customer and Product Marketing Manager at IDnow
Connect with Nikita on LinkedIn

Deploy static sites to Fastly Compute directly from your browser or IDE. Publish blogs, apps, and websites at the edge without hosting.

Where to next? Five pathways for a regenerative built environment Possibilities for the Built Environment, part 2 of 3

This is the second in a series of three provocations, which mark the cumulation of a collaborative effort between Dark Matter Labs and Bauhaus Earth to consider a regenerative future for the built environment as part of the ReBuilt project.

In the first piece, we suggested how six guiding principles for a regenerative built environment could redirect our focus. In this piece, we lay out six pathways toward regeneration, with suggested benchmarks and possible demonstrators, as a means of starting conversations, and identifying allies and tensions. The final piece in the series uses the configuration of the cement industry to explore the idea of nested economies and possible regenerative indicators.

Toward a process-based definition of regeneration

This piece leans into the friction between today’s extractive norms and the regenerative futures we have yet to realise.

We propose five pathways to establish regenerative practices throughout the built environment: these will span scales and sectors while driving change aligned with the principles laid out in the previous provocation. These pathways represent five modes for developing a multiplicity of new metrics, as well as creating the conditions for further progress to be taken on by future generations. Embedded in this logic are multiple and diverse systemic entry points for various actors to engage along the way.

These pathways are directions of travel that can be launched within the current economic system, without adopting a solution mindset. However, there are still real challenges to progress because of today’s political economy and scale of the polycrisis. While these pathways can be initiated within the current economic system, to be fully realised they must transform the system itself along the way.

One aspiration for these pathways is that they can capture the imagination and energies of a range of stakeholders, by creating containers for the changes it will take to bring us to a regenerative built environment. If we assume that to reach this future we will need both paradigm-shifting ‘impossible’ ideas and real demonstrations of best practices within our current contexts, then these pathways can hold together the different strands of effort, from the more feasible to the boundary-pushing, in one directional container. In each pathway, we ourselves look toward collaborators across geographies and disciplines to imagine, visualise and orient ourselves toward where these shifts could take us, in 2030, 2050 and beyond.

On a pragmatic level, structures to support initiation and governance of these pathways already exist and can be further fostered. Ownership for pathways can sit at the city or municipal level, supported by city networks such as Net Zero Cities, C40 cities and others, and further enabled through multi-municipal or regional coalitions to reach national scales. This type of multi-scalar, integrated approaches to the pathways can create the conditions for bottom-up schemes and ideas in communities and allow these to grow. The scale and pace of the transition we need requires governing decision-makers to have visibility over exceptional ideas that can push at the edges of the Overton window.

These pathways are not wholesale solutions to the problem, but rather provocative visions to incite discussion, draw out coalitions, grow a sense of responsibility and build momentum. It’s not that if we do these five things that a regenerative future will be reached. Rather, these are components of a re-envisioning.

Pathway 1: Maximising utilisation

Maximising the utilisation of our existing resources, spaces and infrastructures is one of the most transformative actions we can undertake in a context of resource shortage, carbon emissions crisis and labour crisis. That is especially relevant in the European context where our resource and space use inefficiencies are massive. Unlocking this latent capacity promises significant advancements in social justice and decoupling space and use creation from extraction and pollution. This develops a range of strategies from full utilisation of existing building stock, sharing models, flexible space use, with instruments such as open digital registries, smart space use platforms, smart contracts, and the like.

Image: Ivana Stancic, Dark Matter Labs, ‘A New Economy for Europe’s Built Environment’ white paper, for New European Bauhaus lighthouse project Desire: An Irresistible Circular Society, 2024.

Deep structural changes in mechanisms to challenge speculative land markets and reform regulatory frameworks will be needed to embed redistributive and democratic principles into the governance of urban space.

Potential challenges:

The implementation of maximal utilisation is severely constrained by today’s profit-driven development logic, which prioritises profit through new development and property speculation over efficient or shared use. Institutional inertia, entrenched ownership regimes and the financialisation of housing all work against such a shift, while digital tools like registries and smart contracts risk reinforcing existing inequalities if not democratically governed.

System demonstrator: reprogramming office buildings from 35% to a 90% use, increasing financial flows of the building

What could this look like in 2050? Multi-actor spatial governance frameworks and use-based permissions Dynamic pricing structures for building use based on occupancy and social value creation Highly durable building structures with adaptable multi-use internal spaces Outcomes-based financing models tied to social and ecological impacts Mixed use public-private-NGO partnerships Public digital booking platforms for maximised utilisation of spaces Pathway 2: Next-generation typologies

Next typologies are no longer governed by the principle that form follows function. Instead, they transcend traditional asset classes based on programmatic use, as a new asset class valued for the optionality, flexibility, use efficiency and value creation they provide. Decoupling value creation from extraction, systemic inefficiencies and carbon emissions here happens through focusing on social capital–for instance, radical sharing and cooperation models, as well as intellectual capital–as new innovation models and new design typologies.

Image: Ivana Stancic, Dark Matter Labs, ‘A New Economy for Europe’s Built Environment’ white paper, for New European Bauhaus lighthouse project Desire: An Irresistible Circular Society, 2024.

Without directly challenging speculative land markets, financialisation, and the classed and racialised histories embedded in built form, next-generation typologies may risk becoming a greenwashed evolution of the status quo rather than a transformative departure from it.

Potential challenges:

In capitalist urban systems, typologies and asset classes are produced through financial logics, property relations and commodification. Reframing buildings as flexible, innovation-driven assets may simply reproduce these dynamics in a new guise, reinforcing speculative value creation and market discipline under the banner of sustainability.

System demonstrator: Community living rooms–lightweight extensions on existing buildings, providing amenities with the right to use

What could this look like in 2050? Building public awareness in benefits of social time in relation to mental health New standards and codes for shared spaces and assets Tax reductions linked to carbon reduction impact of maximising efficiency Shared kitchens, living rooms, laundry rooms, appliances, tools and workshops Policy innovation enabling categorisation of shared spaces Increased cross-generational support, decreased loneliness, depression, stress levels Pathway 3: Systems for full circularity

Even though we have comprehensive knowledge on circularity, current levels in Europe are extremely low, and globally its rate is declining, thus this work focuses on the systems unlocking it and instruments driving its advancement on the ground. Apart from a comprehensive understanding of the craft (design for disassembly, development of city-scale material components networks, use of non-composite materials), we need the institutional economy and systems enabling circularity. That includes instruments such as material registries, material passports, financing mechanisms, design regulations, all developed simultaneously to unlock the new systems for circularity.

Image: Ivana Stancic, Dark Matter Labs, ‘A New Economy for Europe’s Built Environment’ white paper, for New European Bauhaus lighthouse project Desire: An Irresistible Circular Society, 2024.

For circularity to be genuinely transformative, it must be accompanied by political and economic restructuring — challenging the growth imperative, redistributing material control, and embedding democratic governance into how urban resources are managed and reused.

Potential challenges

Structural barriers hinder circularity. Extraction, planned obsolescence and short-term profit maximisation, which are the main imperatives in the current system, actively disincentivise long-term material stewardship. Circular practices often require slower, more localised and collaborative modes of production, which clash with the logics of global supply chains, speculative development and financialised real estate.

Moreover, without addressing issues of ownership, labour relations and uneven access to materials and technologies, circular systems risk being implemented in ways that benefit private actors while offloading costs onto public bodies or marginalised communities.

System demonstrator: City-scale architectural components bank, with developers’ right-to-use models

What could this look like in 2050? Material data registries and warranties for secondary materials Lightweight extensions, maximising utilisation and reuse of existing buildings City-scale material balance sheets and data registries for localised material cycles Civic material hubs for storage and distribution, zero carbon transport and logistics networks Demountable and highly adaptable building design Sinking funds for facilitating material reuse during deconstruction Pathway 4: Biogenerative material economy

The long-term future of our material economy must be bioregenerative. This transition needs deep understanding of systems impacts, avoiding further global biodiversity and land degeneration through green growth. This shift requires a transformation in land use for materials, moving from “green belts’’ to permaculture and regenerative methods, from supply chains to local supply loops. This requires developing new local material forests, zero-carbon local transport, non-polluting construction methods, as well as the policy, operational and financial innovation for a successful implementation of a fully biocompatible material economy.

Image: Ivana Stancic, Dark Matter Labs, ‘A New Economy for Europe’s Built Environment’ white paper, for New European Bauhaus lighthouse project Desire: An Irresistible Circular Society, 2024.

True transformation will involve challenging capitalist land markets, redistributing land and decision-making power and centering indigenous and community-led stewardship practices within the material economy.

Potential challenges:

We must not underestimate how global capitalism — through land commodification, agribusiness and extractive supply chains — actively undermines regenerative potential. Transforming green belts into permaculture zones, or establishing local material forests, requires not just technical and policy innovation, but a fundamental shift in land ownership, governance and power relations. Without addressing who controls land and resources, and whose interests are served by current material economies, there is a danger that biogenerative strategies become niche or elite enclaves, rather than systemic solutions.

System demonstrator: Neighbourhood gardens of biomaterials for insulation panels components for on site retrofitting

What could this look like in 2050? Regenerative agriculture & forestry practices and open education programs Certification for regenerative agriculture & carbon storage Macro-investments in bioregional forests & urban farms Civic biomaterial experimentation workshops & micro-factories Land restoration & rewilding sinking funds Regional, regenerative biomaterial supply chains, zero-carbon logistics networks Pathway 5: Shifting comfort, increasing contact

The ways we live in buildings today alienates us from our environmental and earthly context. Today’s built environment is designed to optimise for sterilisation through conditioned environments, separating us from the biomatter that is both input and output to our livelihoods. In providing comfort, we have been depending on extraction of resources, other species, biodiversity and ironically ourselves. We need to decouple the economy of comfort, which is here a shorthand for human-optimised environmental conditions, from extraction and externalisation. Pathways in driving this shift include participation and care models, increasing social values, shifting human relation to nature, a shift from technological to ecological services providing comfort, an increase in social and physical activity, a shift from the building scale to other scales, such as city-scale nature-based infrastructures and micro-scale furniture or clothing.

Image: Ivana Stancic, Dark Matter Labs, ‘A New Economy for Europe’s Built Environment’ white paper, for New European Bauhaus lighthouse project Desire: An Irresistible Circular Society, 2024.

Real progress will involve confronting the socio-economic systems that produce uneven access to comfort, land and energy, and reconfiguring them through justice-oriented redistribution, democratic urban governance and decommodified approaches to housing and care.

Potential challenges:

In this pathway, we must not romanticise behavioural or cultural change without sufficiently addressing the structural conditions that produce and maintain the current ‘economy of comfort’. The alienation it describes is not simply the result of misplaced design priorities or cultural habits, but of a capitalist system that commodifies comfort, standardises it through global construction norms, and externalises its costs onto ecosystems and marginalised communities. Some people experience the comfort constructed by today’s systems much more than others.

Shifting toward ecological and participatory models of comfort is valuable, but without challenging the political economy that privileges resource-intensive, climate-controlled lifestyles for some while denying basic shelter or agency to others, such shifts may remain symbolic or limited in scope.

System demonstrator: Retrofitting a neighbourhood to new comfort standards to increase this area’s economic resilience to changing energy landscape.

What could this look like in 2050? New standards and codes for comfort Tax reductions linked to shifts in investments from mechanical towards ecological services Curriculum rethinking lifestyles in relation to health impacts Investments in extending ecological services and permeable surfaces for flood mitigation, indoor and outdoor comfort through passive climatisation Infrastructures for integral value accounting Capturing and measuring physical and mental health impacts More community and individual knowledge about how to deal with the material world, ranging from biomatter to biodegradable consumer goods Local biowaste sorting and utilisation in industry/agriculture From a static to a process-based definition of a regenerative future

In viewing our transition to a regenerative built environment through these core shifts, we look toward a process-based definition of what is regenerative. A process-based definition would be an understanding of the regenerative that is calculated not by fixed, profit-driven metrics, determined on the basis of isolated data-points, or tied to particular policy benchmarks, but rather something dynamic, intuitive, and assembled from across knowledge-spheres and perspectives, with their associated means of measurement.

A process-based definition might adapt to the changing data landscape, material reality, technopolitical ground conditions and Overton windows of different contexts. Whereas absolute metrics like embodied carbon are difficult to attain with accuracy, and fail to capture the whole picture, targets pegged to individual points in time and specific standards can quickly become obsolete. A process-based approach is inspired by DML’s Cornerstone Indicators [more information at this link], a methodology which creates composite, intuitive indicators for assessing change over time, co-developed and governed in place.

Originally co-designed with Dr Katherine Trebeck, the Cornerstone Indicators were initiated in the city of Västerås in Sweden to support citizens to co-design simple, intuitively understandable indicators that encapsulate what thriving means to the people of the Skultana district. The indicators, which align with overall goals like ‘health & wellbeing’ and ‘strong future opportunities’, can facilitate greater understanding of a place, enable further conversation, and guide future decisions. The initial 9-month workshop process to design this first iteration of the Cornerstone Indicators, resulted in indicators such as ‘the number of households who enjoy not owning a car’, and ‘regularly doing a leisure activity with people you don’t cohabit with’ which were analysed and offered to local policymakers. The success of this process has led to explorations of the Cornerstone Indicator process across Europe and North America. Initiatives like the Cornerstone Indicators present a model of how momentum toward a regenerative future for the built environment can be built. It’s urgent that we begin using process-based definitions and practices to bring more people to the table and increase the potential for transition pathways to gain traction.

Conclusion

In the first two pieces in this series, we have explored the idea of a regenerative future in the built environment by examining how our current frameworks for regeneration fall short of meeting the demands of the present moment. We outline principles and pathways for charting a course toward genuine transformation.

In providing examples of leading-edge organisations making progress toward a regenerative future, these pieces are intended to invite conversation, feelings of agency and reflection, even in the face of prevailing systemic constraints. Rather than offering neat solutions, this piece seeks to open doors to new possibilities.

The context and projections offered here raise a number of questions. For a wholesale transition, it will be important to understand what will indicate progress toward regeneration, as well as how decisions will be made in order to resist the co-opting of regenerative principles into status quo ways of operating.

The remaining piece in this series will explore:

How configurations of material extraction, labour and monetary capital entrench nested economies and particular power relations, using the example of the cement industry Possible indicators of progress toward a regenerative built environment, and of the limitations encountered

Together these pieces aspire to introduce the idea of a regenerative built environment and associated promises and challenges, to inspire a sense of direction and to sketch the broader systemic shifts to which we must commit.

This publication is part of the project ReBuilt “Transformation Pathways Toward a Regenerative Built Environment — Übergangspfade zu einer regenerativen gebauten Umwelt” and is funded by the German Federal Ministry for the Environment, Nature Conservation, Nuclear Safety and Consumer Protection (BMUV) on the basis of a resolution of the German Bundestag.

This piece represents the views of its authors, including, from Bauhaus Earth, Gediminas Lesutis and Georg Hubmann, and from Dark Matter Labs, Emma Pfeiffer and Aleksander Nowak.

Where to? Five pathways for a regenerative built environment was originally published in Dark Matter Laboratories on Medium, where people are continuing the conversation by highlighting and responding to this story.

India’s crypto market, with 93 million investors, demands infrastructure that balances innovation with FATF Travel Rule compliance. Shyft Network, a leading blockchain trust protocol, has partnered with Nowory, an Indian crypto trading platform, to integrate Veriscope, the only frictionless solution for regulatory compliance. This collaboration showcases Veriscope’s ability to enable secure, compliant digital finance in high-growth markets while prioritizing user privacy.

Why Veriscope Matters for India’s

Crypto EcosystemAs India’s regulatory framework evolves, Virtual Asset Service Providers (VASPs) need tools to ensure compliance without complexity. Veriscope leverages cryptographic proof technology to facilitate secure, privacy-preserving data exchanges, aligning with FATF Travel Rule requirements. By integrating Veriscope, Nowory demonstrates how VASPs can achieve regulatory readiness seamlessly.

Nowory’s Role in the Partnership

Nowory, launched in August 2025, is an Indian crypto trading platform designed to serve India’s 93 million crypto investors with a secure and efficient bank-to-crypto gateway. By integrating Veriscope, Nowory aligns with global compliance standards, eliminating risky P2P trading and supporting India’s growing demand for regulated crypto infrastructure.

Key Benefits of Veriscope’s Integration

The Shyft Network-Nowory partnership highlights Veriscope’s power to transform crypto compliance:

Frictionless Compliance: Simplifies FATF Travel Rule adherence without burdening platforms or users. Privacy-First Design: Protects user data using cryptographic proofs, ensuring autonomy. Scalable Solutions: Supports growing VASPs in dynamic markets like India.

Zach Justein, co-founder of Veriscope, emphasized the integration’s impact:

“India’s crypto market needs solutions that streamline compliance while preserving privacy. Veriscope’s integration with Nowory reflects Shyft Network’s commitment to secure, compliant blockchain infrastructure.”

Powering a Compliant Crypto Future

Nowory joins a global network of VASPs adopting Veriscope to meet regulatory demands seamlessly. This partnership underscores the need for secure, compliant crypto infrastructure in high-growth markets like India.

About Veriscope

Veriscope, built on Shyft Network, is the leading compliance infrastructure for VASPs, offering a frictionless solution for FATF Travel Rule compliance. Powered by User Signing, it enables VASPs to request cryptographic proof from non-custodial wallets, simplifying secure data verification while prioritizing privacy. Trusted globally, Veriscope reduces compliance complexity and empowers platforms in regulated markets.

About Nowory

Nowory is an Indian crypto trading platform launched in August 2025, designed for secure and efficient trading of assets like Bitcoin, Ethereum, and Solana. It provides a direct bank-to-crypto gateway for India’s 93 million crypto investors, emphasizing regulatory readiness and the elimination of risky P2P trading.

Stay ahead in crypto compliance.

Visit Shyft Network, subscribe to our newsletter, or follow us on X, LinkedIn, Telegram, and Medium.

Book a consultation at calendly.com/tomas-shyft or email bd@shyft.network

Shyft Network’s Veriscope Powers Compliant Crypto Trading with Nowory in India was originally published in Shyft Network on Medium, where people are continuing the conversation by highlighting and responding to this story.

Cartoons aren’t just for kids; they are a timeless form of entertainment that spans genres from lighthearted comedy to deep, serialized dramas. With so many streaming services and platforms available today, finding where to watch your favorite animated shows can be a challenge. This guide simplifies the search by providing a comprehensive overview of the best sites to watch cartoons online. Whether you’re looking for classic Saturday morning nostalgia, the latest anime hits, or cutting-edge adult animation.

What to Look for in Watch Cartoons Online Streaming Sites Content Variety

The best platforms offer a diverse and regularly updated library. Look for a mix of classic cartoons, new releases, and a range of genres, including kids’ animation, anime, and shows for adults.

User Experience

A good streaming site should have a clean, easy-to-use interface, high-quality video (HD or 4K), and reliable playback. Useful features like parental controls, watchlists, and an ad-free option are also major pluses.

Legality and Safety

To ensure your security and support content creators, stick to reputable services. Look for platforms that have a clear business model, whether through subscriptions or authorized, ad-supported content. Avoid sites with excessive pop-ups or suspicious download prompts.

Top Sites to Watch Cartoons Online by Genre Netflix

A global streaming giant with a vast library of animated content. This site includes a growing number of original series for both kids (e.g., The Dragon Prince) and adults (e.g., BoJack Horseman, Arcane).

Hulu

Known for its mix of classic and modern cartoons. Hulu offers a wide range of content from networks like Cartoon Network and Nickelodeon, as well as a strong lineup of adult animated hits like Family Guy and Bob’s Burgers.

Max (formerly HBO Max)

The hub for Warner Bros.’ extensive catalog. Max is a go-to for many of the most popular cartoons from Cartoon Network and Adult Swim, including Adventure Time, Rick and Morty, and The Powerpuff Girls.

Disney+

The ultimate destination for Disney and Pixar fans. Disney+ provides access to nearly every animated movie and series from these studios, along with content from Marvel, Star Wars, and National Geographic.

Crunchyroll

For anime enthusiasts, Crunchyroll is the premier service. It offers the world’s largest library of Japanese animation, with new episodes often streaming just an hour after they air in Japan. They also have a limited free section for non-subscribers.

Tubi

A completely free, ad-supported streaming service. Tubi has an impressive and diverse collection of cartoons, from nostalgic classics like Scooby-Doo to popular anime and adult animated series.

YouTube

A massive repository of animation. You can find official channels from studios (like Warner Bros. and PBS Kids). The full episodes of shows that are in the public domain, and a huge community of independent animators sharing their work.

Pluto TV

Another free streaming service that operates like a mix between traditional television and on-demand streaming. It has dedicated channels for various cartoons, including classics and anime, as well as a selection of on-demand content.

Hoopla & Libby

If you have a public library card, these apps are fantastic, completely legal, and free options. They allow you to borrow and stream digital comics, animated shows, and movies from your local library’s collection.

Common Mistakes to Avoid When You Watch Cartoons Online Using Illegal Streaming Sites

The biggest mistake is using unofficial sites that host pirated content. These platforms are a major source of malware, viruses, and endless pop-up ads, which can compromise your computer and personal data.

Falling for Phishing Scams

Be cautious of sites that ask for your personal information, credit card details, or require you to “log in” to another service. Always double-check the URL and never enter sensitive information on a site that seems suspicious.

Disabling Security Software

Some unreliable sites might trick you into disabling your antivirus or ad-blocker to watch a show. This is a red flag and should never be done, as it leaves your device vulnerable to a variety of threats.

Ignoring Parental Controls

For families, a common oversight is not using the parental control features available on most major streaming services. These tools are essential for ensuring that children only have access to age-appropriate content.

Clicking on Suspicious Ads

Even on legal, ad-supported sites, be careful where you click. Avoid engaging with pop-ups or banners that promise free prizes, downloads, or “miracle” products, as they can lead to malicious websites.

Forgetting VPNs for Regional Content

Some shows might be restricted to certain countries. A common mistake is not using a Virtual Private Network (VPN) to access legally available content from another region where you have a subscription.

Tips for Safe and High-Quality Cartoon Streaming Using Reputable Platforms

The most important tip is to stick to legal and well-known streaming services like Netflix, Hulu, Max, and Disney+. These platforms have official partnerships with content creators, guaranteeing that the shows are authorized and free of malware.

Enable Parental Control

For families, it is crucial to set up and use parental controls. Most major streaming services offer robust tools that allow you to create profiles for children and restrict content based on age ratings, preventing them from accessing inappropriate material.

Be Wary of Free Sites

While some free, ad-supported services like Tubi and Pluto TV are legitimate, you should be extremely cautious of obscure sites. If a site offers a massive, brand-new library for free with no subscriptions or ads, it is likely illegal and could be a source of viruses and malware.

Using a VPN

A Virtual Private Network (VPN) can be a great tool for secure streaming. It encrypts your internet traffic and hides your IP address, adding a layer of privacy and security. It can also be used to access content that is legally available in other regions.

Avoid Suspicious Ads and Downloads

On ad-supported sites, never click on pop-up ads, download buttons, or links that seem out of place. These are often phishing attempts or malicious software disguised as something else.

Conclusion

The world of animation is vast and vibrant, offering something for every age and interest. With a clear understanding of the best platforms and a few safety tips, you can unlock a universe of cartoons without hassle. Whether you prefer the convenience of a subscription service like Netflix or the extensive free libraries of Tubi and YouTube, there are plenty of legal options available. By choosing a reputable platform and being mindful of potential risks, you can ensure a safe and high-quality streaming experience, making it easier than ever to enjoy your favorite animated adventures.

About Herond

Herond Browser is a cutting-edge Web 3.0 browser designed to prioritize user privacy and security. By blocking intrusive ads, harmful trackers, and profiling cookies, Herond creates a safer and faster browsing experience while minimizing data consumption.

To enhance user control over their digital presence, Herond offers two essential tools:

Herond Shield: A robust adblocker and privacy protection suite. Herond Wallet: A secure, multi-chain, non-custodial social wallet.

As a pioneering Web 2.5 solution, Herond is paving the way for mass Web 3.0 adoption by providing a seamless transition for users while upholding the core principles of decentralization and user ownership.

Have any questions or suggestions? Contact us:

On Telegram https://t.me/herond_browser DM our official X @HerondBrowser Technical support topic on https://community.herond.org

The post Where to Watch Cartoons Online: Your Complete Guide to Every Genre appeared first on Herond Blog.

The post Where to Watch Cartoons Online: Your Complete Guide to Every Genre appeared first on Herond Blog.

Why Extrimian’s AI‑First Approach Improves Digital Credential Solutions

Let’s start explaining why Extrimian is an AI-First company. Our goal is to give universities and other startups, a faster, more reliable way to issue, manage, and verify credentials—while ensuring our own teams work smarter behind the scenes. This post explains how our AI‑first ethos (via the internal agent Micelya) makes Extrimian more efficient, and how our University Portal product solves the very real problems of diploma fraud, identity theft and manual verifications.

TL;DR Extrimian’s AI‑first philosophy refers to how we work internally, not how we verify credentials. Our agent Micelya organises knowledge and speeds up development and support. Self‑Sovereign Identity (SSI) and cryptographic signatures secure the credentials; AI is not used in the verification flow. By using AI internally and SSI externally, Extrimian delivers more complete features, faster updates and a calmer verification process for universities and students. What does “AI‑first” really mean in Extrimian? AI – Artificial intelligence, future technology innovation. Extrimian AI-First Company

–

When Extrimian says we are AI‑first, we’re talking about our own processes, not the product’s cryptographic core. We have an internal agent called Micelya that acts like a living knowledge hub for our teams. It stores and organises product specifications, SOPs, design decisions and customer insights, making them easy to find and apply. 

How do we use Micelya internally? Agile and interdisciplinary processes

To keep Micelya truly useful, our product and engineering teams continually feed it with the latest internal documentation, release notes, process playbooks and step‑by‑step guidelines for every product. This curated knowledge helps the agent surface the right answers, recommend the correct templates and shorten hand‑offs across the organisation.

When engineers or product managers work on a new release, Micelya suggests the right protocol or template and reminds us of past decisions. This means we iterate more quickly, avoid duplication, and keep every improvement in play. The agent doesn’t handle your credentials; it powers how we build and support the product.

How does Micelya make Extrimian faster and more consistent?

Micelya’s role is to optimize Extrimian’s internal processes. It automatically flags related resources—SOPs, integration steps, templates—at the moment a team member needs them. It nudges us when something requires approval or when a template must be updated. It also stores lessons learned from support tickets and feature requests, so improvements become part of our future releases. This means we respond to universities more quickly, address issues more consistently, and ship updates faster. Because the agent streamlines our internal workflow, you receive a product that evolves continuously without long delays.

Why does AI‑first matter for universities if it’s only internal?

You might wonder why our internal AI should matter to you. Simply put, Micelya makes Extrimian more efficient, which reflects in our product and support. Faster iteration cycles mean new features and fixes arrive sooner. A shared knowledge hub ensures you receive consistent advice regardless of who answers your call. When updates roll out, they’re informed by a complete history of past decisions and user feedback. Although AI never touches your credentials or verification flow, our AI‑first culture ensures we deliver a more refined, dependable product.

Why is it good to be an AI‑first company?

Being AI‑first has benefits that extend beyond Extrimian; companies in many sectors adopt AI to become more responsive, innovative, and resilient. Here’s a concise summary of key advantages and how they play out in our case:

Benefit of being AI‑first Impact on operations Extrimian example Efficiency Faster decisions & shorter release cycles Micelya surfaces the right SOPs and templates so teams ship updates quicker Knowledge retention Shared, up‑to‑date repository of policies & best practices Our knowledge hub prevents repeated mistakes and speeds new‑hire onboarding Cross‑team alignment Consistent workflows and communication across departments Product, engineering & support teams work from the same playbook Continuous improvement AI highlights patterns & informs roadmaps Micelya captures feedback loops so each release builds on lessons learned Better customer experience Quicker responses & higher‑quality products Universities see faster support, smoother updates and less rework

This table illustrates why an AI‑first mindset isn’t just a buzzword—it underpins real gains in speed, quality and alignment. For Extrimian, those gains help us deliver a stable verification product more rapidly and consistently.

What do students and verifiers experience?

From a student’s perspective, digital credentials mean convenience and control. They receive tamper‑proof proofs right in their ID Wallet and share them through a link or QR code. They aren’t forced to disclose their entire transcript when only enrollment status is needed. For verifiers, checking credentials is just as straightforward: visit the university’s verification page, scan the QR code or paste the link, and see an immediate result with clear guidance. No waiting for emails, no guesswork, and no reliance on appearance. This streamlined experience increases trust and speeds up decision‑making for everyone.

AI for process, cryptography for trust

Extrimian’s approach balances two forces: cryptographic security for credentials and AI‑driven efficiency for internal work. SSI and digital signatures make diplomas and enrolment proofs tamper‑proof, while the AI‑first mindset (through Micelya) reduces friction in our development and support processes. The two realms remain separate; AI does not verify credentials, but it helps us build better products and respond faster. For universities, this means a reliable, ready‑to‑use product backed by a company that continuously improves without sacrificing trust.

Recommended resources: Internal links University Portal overview – Learn more about our University Portal and how it issues tamper‑proof credentials.
ID Wallet page – link to the page that introduces the student/employee wallet used to store and share verifiable credentials.
Anchor text: “See how the ID Wallet lets students carry and share their credentials securely. About Extrimian / Our Story – Discover who we are and why we invest in internal AI to deliver better products.” Blog archive or Learning Resources – For a deeper dive into SSI and digital identities, explore our resources page or related articles. Contact or Demo page – If you’d like to see the portal in action, book a demo with our team.
External links W3C Verifiable Credentials specification – The W3C’s Verifiable Credentials Data Model defines how digital credentials are issued and verified. Self‑Sovereign Identity (SSI) explainer – Self‑Sovereign Identity (SSI) is an approach that puts individuals in control of their data; this SSI overview explains the core principles. Industry research or reports by EDUCASE – Recent studies show credential fraud is on the rise; this EDUCAUSE report outlines the challenge for universities. FIDO Alliance passkey standards – Passkeys are based on the FIDO2/WebAuthn standard for secure, phishing-resistant login.

 

The post Why Extrimian is an AI-First Company first appeared on Extrimian.

We released Holochain 0.5.5 on 19 August and all tooling and libraries are now up to date.

Holochain 0.5.5 and 0.5.6 released

With these releases, we’re continuing to work on network performance for the Holochain 0.5.x series. There’s been a bunch of bug fixes and improvements:

New: At build time, Holochain can be switched between libdatachannel and go-pion WebRTC libraries, with libdatachannel currently the default in the Holochain conductor binary release and go-pion the default in Kangaroo-built hApps. go-pion is potentially free from an unwanted behaviour in libdatachannel, in which the connection is occasionally force-closed after a period of time. If you’ve seen this behaviour, consider trying your hApp in a Kangaroo-built binary to see if it’s resolved. Changed: Some tracing messages are downgraded from info to debug in Kitsune2 to reduce log noise. Bugfix: Make sure the transport layer has a chance to fall back to relay before timing out a connection attempt. Bugfix: When Holochain received too many requests for op data, it would start closing connections with the peers making the requests it couldn't handle. This caused unnecessary churn to reconnect, rediscover what ops need fetching, and send new requests. Instead, the requests that can't be handled are dropped and have to be retried. The retry mechanism was already in place, so that part just works. When joining a network with a lot of existing data, the sync process is now a lot smoother. Bugfix: Established WebRTC connections would fall back to relay mode when they failed; now the connection is dropped, and peers will try to establish a new WebRTC session. Bugfix: If a WebRTC connection could not be established, the connection would sometimes be left in an invalid state where it could not be used to send messages and Holochain wouldn't know to replace the connection to that peer. Bugfix: Holochain was using the wrong value for DHT locations. This was leading to differences being observed in the DHT model between peers, who would then issue requests for the missing data. The data couldn't be found because the requested locations didn't match what was stored in the database. This led to DHT sync failing to proceed after some period of time. Note: updating a hApp from Holochain 0.5.4 or earlier might cause a first-run startup delay of a few seconds as the chunk hashes are recalculated. Bugfix: Kitsune2 contains a fix for an out-of-bounds array access bug in the DHT model. Shifted priorities for 0.6

We’d originally planned to start the groundwork for coordinator updates (allowing a cell’s coordinator zomes to be updated) and DHT read access gating via membrane proofs in Holochain 0.6. We’re now going to push those to a later release in favour of focusing on warrants and other features that offer functionality that considers the strategically critical priorities of our partners.

These are the major themes of our work on 0.6:

Resolving incomplete implementations of the unstable warrants feature, writing more tests, and marking the feature stable for all app and sys validation except chain forks. Finishing the work that allows Holochain to block peers at the network level if they publish invalid data. Making sure that the peer connection infrastructure is production-ready. Continuing to build out the Wind Tunnel infrastructure and test suite.

There are a few smaller themes; check out the 0.6 milestone on GitHub for the full story.

Wind Tunnel updates

With many of the big gains in network performance and reliability realised in the 0.5 line and two new developers joining our team, we’ve freed up developer hours to focus on the Wind Tunnel test runner once again. Our big goal is: make it more usable and used. To this end, here are our plans:

We want to run the tests on a regular, automated schedule to gather lots of data and track changes over Holochain’s development. Rather than it being a requirement that a conductor is running alongside Wind Tunnel, Wind Tunnel itself will run and manage the Holochain conductor, allowing us to test conductors with different configs or feature flags within a scenario. Wind Tunnel already collects metrics defined in each scenario, but we are expanding on this to collect metrics from the host OS, such as CPU usage, and from the conductor itself. This will give us insight into system load and how the conductor is performing during the scenarios. More scenarios will be written, including complex ones involving malfunctioning agents and conductors with different configurations. More dashboards are being created to display the new metrics and give us insight into how the scenarios perform from version to version. These will then make it easy for us to track how Holochain's performance envelope changes as new features are added, and also to make it easier to prioritize where to focus our optimization efforts. We plan to run multiple scenarios on a single runner in parallel to make better use of the compute resources we have in our network. Along with adding more runners to the network, this will reduce the time it takes to run all of the tests, which will let us run the tests more often. We’re creating an OS installation image for Wind Tunnel runners, allowing any spare computer to be used for Wind Tunnel testing. This will let people support Holochain by adding their compute power to our own network. Holochain Horizon livestream

If you’re reading this, you probably care about more than just the state of Holochain development. We’re starting a series of livestreams that talk about things like where the Holochain Foundation is headed and what’s happening in the Holochain ecosystem.

The first one, a fireside chat between Eric Harris-Braun, the executive director of the Foundation, and Madelynn Martiniere, the Foundation’s newest council member and ecosystem lead, was on Wed 30 Jul at 15:00 UTC. Watch the replay on YouTube.

Next Dev Office Hours call: Wed 17 Sept

Join us at the next Dev Office Hours on Wednesday 17 Sept at 16:00 UTC — it’s the best place to hear the most up-to-date info about what we’ve been working on and ask your burning questions. We have these calls every two weeks on the DEV.HC Discord, and the last one was full of great questions and conversations. See you there next time!

The shift to digital identity is accelerating and 2026 will be a critical year for the security printing and paper businesses. Now is the time to prepare.

By Helen Garneau

For decades, trust has been printed. Passports, ID cards, certificates, and other official, government-issued, and securitized documents have been how people prove who they are.  The European Digital Identity (EUDI) wallet signals the end of the era for exclusive use of paper and plastic-based identity. 

The regulation, set to be mandated with new technologies rolled out within the next year, introduces a way for citizens, residents, and businesses to securely share digital identity data in the form of  Verifiable Credentials across all EU member states; banking, travel, enterprises and government services are already piloting credential implementations. 

As with many transformative technologies, change happens slowly and then very fast.  

Companies that adapt quickly will stay relevant and leverage digital identity to deliver better products and services and innovate around seamless authentication and digital trust. Those that delay risk being left behind.

The question for companies in the secure document printing market is: how to not become obsolete when cryptography can make digital credentials every bit as trustworthy as the most secure physical document?

Just because the EUDI wallet framework architecture describes Verifiable Credentials, a digital identity technology that is interoperable, secure, and easy to use, the shift to digital identity doesn’t spell the end of physical documents.

Position for the great transition

The next few years will see a transition to verifiable digital identity and verifiable digital data and identity documents are the on-ramp. A key example: The International Civil Aviation Organization (ICAO) specifications for Digital Travel Credentials start with self-derived credentials (DTC-1), which means people are able to extract the data in the passport’s RFID chip then comparing the image in the chip with a real-time liveness check of the person scanning the passport and issuing a digital credential version of the passport. The passport can then be validated to confirm the data came from an official government source. They’ll still need their physical passport when they travel but it will only be for backup. 

The next step will be governments directly issuing digital passport credentials (following DTC-2 specifications) along with a person’s physical passport. The person will still need this physical passport when they travel.

In both cases, the digital passport credential will do all the heavy lifting in terms of identity authentication that enables the passenger to seamlessly check-in, access a lounge, cross a border, pick up a rental car, and check into their hotel. 

After these have been successfully implemented, we’ll move to a DTC-3 type credential — a fully digital passport where no physical back up is required. 

Where are we in the transition process? Well, with Indicio Proven, governments are able to issue DTC-2 type credentials. Expect to see them soon.

Driver’s licenses, diplomas

It’s not just passports that are being digitalized. The same liveness check and face-mapping that happens with DTCs can be done with government-issued documents, such as driver’s licences and Optical Character Recognition can read the data in the absence of the RFID chip. More US states are adopting Mobile Driver’s Licenses (mdoc/mDL), while the European Union expects this standard to be implemented in Europe by 2030. 

One bug in this rollout is that many mDL implementations don’t include the verification software businesses need to validate digital versions. These businesses still rely on physical driver’s licenses for customer identity authentication. If you want an mDL with simple, mobile, scalable verification Indicio Proven has you covered.

Diplomas, degrees, course transcripts and certificates are also being rendered as tamper-proof digital credentials through the Open Badges 3.0 specification. While their physical counterparts are not secured in the same way as government-issued identity, the Open Badges 3.0 standard makes these documents impossible to fake, binds them to their rightful holders, and renders them instantly verifiable.

The key to managing the transition to digital identity documents is to enable transition to these documents. And this is where Indicio Proven is unique in the marketplace.

Indicio Proven: your bridge from the physical to digital

Indicio Proven® gives printing companies a direct path into the digital era by transforming secure physical documents into Verifiable Credentials, the same technology outlined in the EUDI specification.

With Proven, your physical products become anchors, on-ramps, or companions to digital credentials. Passports can be turned into DTCs, and more than 15,000 types of identity documents from 250+ countries and territories can be credentialized. Driver’s licenses and other official documents can also be validated, bound with biometrics, and issued as tamper-proof digital Verifiable Credentials that are:

Fraud-resistant and cryptographically secure Combine with biometrics and stored on individual’s own device Portable across borders Instantly verifiable without complex checks

Proven is a fast, simple, and cost-effective way to extend your role in the EUDI realm today that helps your customers:

Save costs by reducing manual checks Protect against fraud with secure digital credentials Unlock new revenue by offering digital trust services alongside physical products

This technology also opens the door to offering new services in identity verification. When passports become Digital Passport Credentials and driver’s licenses become mobile driver’s licenses, organizations like financial institutions, airlines, and government agencies can verify and trust the information. Processes that were once inefficient and cumbersome—such as age verification, KYC, and cross-border travel—become seamless, premium services that create value and potential revenue streams every time they’re issued and verified.

The next chapter for printing and paper

Physical cards and certificates will not disappear overnight, but their primary value will shift. And that doesn’t mean paper-based industries are left out—your expertise in trust, security, and document integrity is more valuable than ever. 

Proven makes this transition easy, enabling your business to grow as identity goes digital. With Indicio, you can carry that expertise into the digital age and position your company at the center of the EUDI wallet revolution.

The world is moving from paper to Proven. The opportunity is here—are you ready to take it? 

Contact us today to get your complimentary EUDI digital identity strategy from one of our experts.

###

The post From paper to Proven: what the EUDI wallet means for the secure document printing industry appeared first on Indicio.

If you’ve ever used a crypto wallet like MetaMask, you’ve used an externally owned account (EOA). It’s a simple pair of keys: a public address that acts as your identity and a private key that proves you own it. This model is powerful but rigid, putting the entire burden of security and complexity on the user. Lose your seed phrase? Your funds are gone forever. Find transactions confusing? The ecosystem has little flexibility to help.

A new standard is emerging to solve these problems, moving us from rigid key-based wallets to programmable, user-friendly interfaces. The answer is smart accounts.

What is a smart account?

A smart account (or smart wallet) is not controlled by a single private key. Instead, it is a smart contract that acts as your wallet. This shift from a key-based account to a contract-based account is revolutionary because smart contracts are programmable. They can be designed to manage assets and execute transactions based on customizable logic, enabling features that were previously impossible.

This transition is powered by account abstraction (AA), a concept that “abstracts away” the rigid requirements of EOAs, allowing smart contracts to initiate transactions. While the idea isn’t new, it recently gained mainstream traction thanks to a pivotal Ethereum standard: EIP-4337.

EIP-4337 (the game changer)

EIP-4337: Account Abstraction via Entry Point Contract achieved something critical: it brought native smart account capabilities to Ethereum without requiring changes to the core protocol. Instead of a hard fork, it introduced a higher-layer system that operates alongside the main network.

Here’s how it works: UserOperations: You don’t send a traditional transaction. Instead, your smart account creates a UserOperation — a structured message that expresses your intent. Bundlers: These network participants (such as block builders or validators) collect UserOperation objects, verify their validity, and bundle them into a single transaction. Entry Point Contract: A single, standardized smart contract acts as a gatekeeper. It validates and executes these bundled operations according to the rules defined in each user’s smart account.

This system is secure, decentralized, and incredibly flexible.

Other key proposals (EIP-3074 and EIP-7702)

The journey to account abstraction has involved other proposals, each with different approaches.

EIP-3074: This proposal aimed to allow existing EOAs to delegate control to smart contracts (called invokers). While simpler in some ways, it raised security concerns due to the power given to invoker contracts. It has since been paused. EIP-7702: Proposed by Vitalik Buterin, this upgrade would allow an EOA to temporarily grant transaction permissions to a smart contract. It offers a more elegant and secure model than EIP-3074 and may complement — rather than replace — the infrastructure built around EIP-4337.

For now, EIP-4337 is the live standard that developers and wallets are adopting.

Why smart accounts matter

The real value of smart accounts lies in the user experience and security improvements they enable.

Gas abstraction: Apps can pay transaction fees for their users or allow payment via credit card, removing a major barrier to entry. Social recovery: Lose your device? Instead of a single seed phrase, you can assign “guardians” — other devices or trusted contacts — to help you recover access. Batch transactions: Perform multiple actions in one click. For example, approve a token and swap it in a single transaction instead of two. Session keys: Grant limited permissions to dApps. A game could perform actions on your behalf without being able to withdraw your assets. Multi-factor security: Require multiple confirmations for high-value transactions, just like in traditional banking. The future is programmable

Smart accounts represent a fundamental shift in how we interact with blockchains. They replace the “all-or-nothing” key model with programmable, flexible, and user-focused design. Major wallets like Safe, Argent, and Braavos are already leading the way, and infrastructure from providers like Stackup and Biconomy is making it easier for developers to integrate these features.

We’re moving beyond the era of the seed phrase. The future of Web3 wallets is smart, secure, and designed for everyone.

How Smart Accounts Are Reinventing The Web3 Wallet was originally published in OntologyNetwork on Medium, where people are continuing the conversation by highlighting and responding to this story.

Why competitive intelligence often fails in messaging

I’ve seen it firsthand: competitor battlecards stacking up in shared drives, analyst PDFs collecting dust, and persona research tucked into charts that never see daylight. It’s easy to feel overwhelmed by the noise and unsure where to even start. I’ve been there more times than I’d like to admit. The problem isn’t a lack of data; it’s the ability to digest it and translate it into messaging that actually differentiates. Without that step, teams fall back on the same empty claims: “innovative,” “customer-first,” “the most trusted.” Buyers tune it out. Competitive intelligence only works when it becomes narrative. The raw material exists: persona insights, competitor positioning, feature data – but without the right framework, it collapses into noise. In fact, 83% of B2B buyers now expect personalization on par with consumer experiences, which means vague promises no longer earn attention.

The three pillars of messaging that stand out Buyer persona insights

Great messaging doesn’t start with features; it starts with people. Early on, I wrote messaging as if “the buyer” was a monolith. It fell flat. A CMO trying to differentiate a brand doesn’t think like a sales leader trying to speed up onboarding. Persona-based marketing insights can surface those distinctions, but the job of messaging is to speak to those specific goals and pain points, not to the broadest common denominator.

Competitor messaging & positioning

Copycat messaging is the silent killer of differentiation. Throw the first stone if you’ve never obsessed over a competitor’s launch while paying too little attention to how they positioned their value. Competitive benchmarking is useful, but not if it leads you to recycle the same message with a “we do it better” twist. The real win comes from understanding where you truly differentiate and telling the story of why that matters in the first place.

Feature differentiation that resonates

I used to think listing every capability would convince buyers, but it never did. Features only matter when they connect to buyer outcomes that feel tangible. In fraud prevention, that might mean reducing chargeback losses by 40%. In cybersecurity, it might mean cutting breach detection time in half. The point is not to list what your product does but to anchor why it matters in the buyer’s world, and only nerd about the specifics once you have their undivided attention.

Generic vs persona-informed messaging

To show the difference, here’s a snapshot of how messaging shifts when intelligence is applied. Generic copy focuses on features and broad claims, while persona-informed messaging uses ICP data and persona pain points to connect with specific buyers.

DomainGeneric MessagePersona-Informed MessagePersona ExampleFraud Prevention“We help enterprises stop fraud before it happens by detecting suspicious activity, flagging risky transactions, and protecting customer accounts. Our platform is designed to keep your business safe and secure.”
“You’re responsible for revenue protection across global sales flows, which means chargebacks and payment fraud land on your desk. Teams like yours cut chargeback losses by 40% with real-time fraud alerts that protect revenue without slowing deals. Buyers expect both outcomes: silent protection and measurable margin impact.”
VP of Sales, BDR LeaderFinancial Crimes Compliance (AML/KYC)“We help compliance teams stay audit-ready with AML and KYC tools that reduce risk, cut down on false positives, and keep your business aligned with evolving regulations.”“As Chief Compliance Officer, you know false positives are the hidden tax on your team. Cutting them by 50 percent means analysts focus on true risk while you stay audit-ready against FATF and DOJ scrutiny. Clients report faster SAR filing cycles and stronger exam outcomes that regulators can see.”Chief Compliance OfficerCybersecurity / Threat IntelligenceWe help enterprises stay ahead of account takeover, session hijacking, and phishing attacks with advanced detection and monitoring that safeguard sensitive data and protect customer accounts.”“Your bottleneck probably isn’t a lack of MFA; it’s gaps in mobile session integrity and weak recovery bindings. Leading platforms now combine FIDO2 passkeys, device certificates, runtime attestation, and behavioral biometrics into a single API. Results often show 90–99% reductions in ATO flows and deployments measured in weeks, not quarters, while fitting directly into CI/CD pipelines.”CISOTrust & Safety (Age Assurance, Platform Integrity)“We help platforms create safe online spaces by stopping fake accounts, preventing underage sign-ups, and protecting users from harmful activity. Our solution builds trust across your community.”“You’ve grown marketplaces quickly, but fake accounts and underage signups erode trust as fast as growth builds it. Trust & Safety leaders block fraudulent accounts at scale, improving conversion while lifting NPS. Clients see measurable drops in fake account creation alongside sustained growth.”
Head of Trust & Safety
Risk Management“We help companies manage third-party risk by identifying potential vulnerabilities, monitoring vendor compliance, and providing visibility across your supply chain.”“Your mandate is to catch vendor risk before it turns into tomorrow’s crisis. Risk leaders using continuous monitoring spot supplier red flags weeks earlier. That foresight prevents compliance failures and costly breaches that would otherwise reach the boardroom.”
CRO, Risk Manager

This table turns the theory into practice: with competitive intelligence in play, messaging shifts from broad and forgettable to precise and compelling.

The challenge, of course, is scale. Tailoring a handful of persona-informed messages is one thing. Refreshing them continuously across dozens of campaigns, competitors, and markets is another. That’s where AI-enhanced intelligence platforms become indispensable. By monitoring live market signals, competitor narratives, and persona insights, AI can help us surface fresh message updates, stress-test positioning, and keep playbooks aligned with the market, so teams never slip back into generic messaging.

A framework for refreshing messaging without reinventing the wheel

High-performing teams do not wait for annual off-sites to rethink their messaging. They run refreshes as an ongoing discipline. So, how do we actually keep messaging fresh without burning cycles? Here is a practical process that has worked for us:

Collect signals continuously – competitor launches, persona survey data, market shifts. Map signals to differentiation – identify where buyer priorities intersect with unique strengths. Stress-test narratives – run them through sales conversations, campaign pilots, and post-call analytics. Refresh, don’t rewrite – evolve messaging every few weeks, not every few quarters.

The result is messaging that stays alive, tuned to the market, and sharper than the competition.

How leading teams operationalize competitive intelligence

It’s one thing to know the process, another to make it work at scale. The best GTM teams operationalize competitive intelligence through three capabilities:

1. Always-on market signals

Static PDFs cannot keep up with dynamic markets. Teams that win track real-time signals like funding rounds, regulatory shifts, competitor campaigns, and feed them straight into campaign planning.

2. Persona-level insights at scale

Instead of treating personas as theater, leading teams embed real-time buyer insights into campaigns and sales workflows. Every refresh reflects what buyers are actually thinking now, not last year.

3. Embedded intelligence in workflows

Intelligence only works if it lives where teams work: Slack alerts pushing industry shifts in real time, SEO content built on market truth, email campaigns aligned with buyer signals, and sales calls armed with live AI intelligence. Intelligence becomes actionable in the moment, not theoretical.

The challenge of messaging in niche markets

As adoption grows, so does the data: companies using competitive intelligence report a 15% boost in revenue growth. Platforms like Link are built to deliver these capabilities, from event monitoring and perpetual surveys to dynamic playbooks and post-call analytics. The real challenge is not more data, but the right data — intelligence that is specific enough to your market to make messaging credible and differentiated.

And this is where it gets tricky in niche markets. Sure, we can create a neat competitive battlecard, but what do we actually put on it if I don’t understand how the ICP is behaving in the real world? We can send a well-designed email, but if the target is a cybersecurity leader, they might care more about an upcoming TPRM webinar than a case study from the banking sector. The reality is that without specific, contextual intelligence, even polished campaigns miss the mark without the right segmentation.

At the end of the day, buyers don’t want platitudes; they want proof. In specialized markets, the cost of undifferentiated messaging isn’t just lost deals, it’s lost trust and stalled growth.

Key Takeaways Competitive intelligence fails when it sits in decks and PDFs. It only creates value when it fuels differentiated narratives buyers actually hear. Messaging that stands out comes from three things: persona insights, competitor positioning, and outcomes buyers can measure. Refreshing messaging is not a one-off exercise. The teams that win treat it as an ongoing discipline. Intelligence has to live where teams work: in Slack alerts, sales calls, campaigns, and content, so it becomes actionable in the moment. In niche markets, buyers don’t want platitudes, they want proof. Miss that, and you lose both deals and trust.

The post Turning Competitive Intelligence into Messaging That Wins (with examples) appeared first on Liminal.co.

“Google recently gave us something we’ve been waiting on for years: hard numbers on how much energy an AI prompt uses.”

According to their report, the median Gemini prompt consumes just 0.24 watt-hours of electricity — roughly running a microwave for a second — along with a few drops of water for cooling.

On its face, that sounds almost negligible. But the real story isn’t the number itself. It’s about incentives: who benefits, who pays, and how those dynamics shape how we deploy AI.

A Digital Identity Digest Who Really Pays When AI Agents Run Wild? Incentives, Identity, and the Hidden Bill Play Episode Pause Episode Mute/Unmute Episode Rewind 10 Seconds 1x Fast Forward 30 seconds 00:00 / 00:11:21 Subscribe Share Amazon Apple Podcasts CastBox Listen Notes Overcast Pandora Player.fm PocketCasts Podbean RSS Spotify TuneIn YouTube iHeartRadio RSS Feed Share Link Embed

You can Subscribe and Listen to the Podcast on Apple Podcasts, or wherever you listen to Podcasts.

And be sure to leave me a Rating and Review!

A history lesson from the cloud

To understand how incentives can blindside us, let’s revisit the cloud computing boom. You remember that, right? “Save all the money! Get rid of your datacenter! Cloud computing ftw!”

In 2021, Sarah Wang and Martin Casado of Andreessen Horowitz published “The Cost of Cloud: A Trillion-Dollar Paradox.” They showed how cloud services, while indispensable for speed and agility, became a drag on profitability at scale. Dropbox famously repatriated workloads back from public cloud and saved $75 million over two years — a shift that doubled their gross margins from 33% to 67%. CrowdStrike and Zscaler adopted hybrid approaches for similar reasons.

The takeaway: Early incentives reward adoption. But when the bills grow large enough, cost discipline suddenly becomes a board-level issue. By then, inefficiency is already baked into operations.

AI energy use is following the same arc. Vendors and enterprises alike are celebrating adoption, but the hidden costs are waiting to surface.

The incentives for vendors

AI vendors want mass adoption, and their incentives reflect that. They’ll emphasize efficiency gains — like Gemini’s 33-fold reduction in energy per query from 2024 to 2025, according to their recent report — but those are selective disclosures.

As the MIT Tech Review story “In a first, Google has released data on how much energy an AI prompt uses” pointed out, disclosures become marketing tools without standardized metrics. Vendors reveal what flatters them, not necessarily what helps customers make better choices.

And the race to ship bigger, more capable models only deepens this misalignment. Scale brings revenue. The energy, water, and carbon costs? Those are someone else’s problem.

The incentives for enterprises

Enterprises often don’t see the full picture either. A cloud invoice hides the per-prompt costs. IAM and security teams grant permissions to agents, but they don’t own the sustainability budget. Sustainability teams, meanwhile, don’t have visibility into permissions and entitlements.

The result: over-provisioning goes unnoticed. AI agents are allowed to “just run,” and every permissioned action quietly consumes resources. Those costs add up, but they land in someone else’s ledger, often long after the decisions were made.

This is the same organizational mismatch cloud adoption created: IT ops pays the bill, developers get the flexibility, and the CFO finds out later. AI is just the next chapter.

Incentives and regulation

Here’s where things start to change. Environmental, Social, and Governance (ESG) reporting isn’t optional anymore; regulators are giving incentives real teeth.

United States: The SEC’s new climate disclosure rule requires large public companies to report greenhouse gas emissions. Failure to comply has already resulted in multimillion-dollar fines for ESG misstatements, like Deutsche Bank’s $19M settlement. Europe: The EU’s Corporate Sustainability Reporting Directive (CSRD) sets steep penalties. In Germany, fines can reach €10 million or 5% of turnover. In France, executives risk prison time for obstructing disclosures. Australia: Directors must certify sustainability data as part of financial filings. Failure to comply can trigger civil penalties in the hundreds of millions, with individuals personally liable for up to AUD 1.565 million.

None of this is about fearmongering. (OK, maybe it’s a little bit of fearmongering in the hope of catching your attention.) It’s also a reality. Boards are now directly accountable for climate and resource disclosures. AI usage may feel “small” at the per-prompt level, but at enterprise scale, it becomes part of that regulatory picture.

Where identity comes in

So where does identity fit?

Every AI-agent action isn’t just a governance event; it’s also a consumption event. Permissions are no longer just about who can do what. They’re also about what we’re willing to pay, financially and environmentally, for them to do it.

Standing access matters here, too. A human user with unused entitlements is a risk; an AI with broad entitlements is a resource leak. It will happily keep churning until someone tells it to stop — and by then the costs have already piled up.

Imagine if your audit logs evolved to show not just “who accessed what,” but “how much energy and water those actions consumed.” It sounds futuristic, but sustainability reporting is heading in that direction. IAM teams may find themselves pulled into ESG conversations whether they want to be or not.

Runtime governance as sustainability

Earlier, I argued that runtime governance is essential when AIs can act faster than human oversight cycles. Here’s the sustainability angle: runtime checks can throttle not just security risks, but waste.

Deny agents the ability to hammer a system with brute-force permutations. Flag actions that consume far more resources than typical queries. Revoke unnecessary entitlements before they become both a risk and an expense.

Governance is shifting from “is this allowed?” to “is this worth it?”

Bridging past lessons with today’s challenges

The hidden costs of the cloud were supposed to teach us that efficiency ignored eventually becomes inefficiency entrenched. I’m not convinced people and organizations have learned that lesson, but regardless, AI is repeating that story, with energy, water, and carbon as the currencies.

Like cloud spend, AI resource usage may start small, but it scales faster than oversight cycles. And when regulations demand transparency, boards will want answers.

Identity leaders are uniquely positioned here. Permissions are the gate between an agent’s intent and its actions. Expanding the governance lens to include consumption could help organizations stay ahead of both the bills and the regulators.

Putting it together

So let’s put this together:

Vendors are incentivized by adoption and scale, not efficiency. Enterprises have silos that hide true costs. Regulators are introducing real penalties for climate and resource misstatements. Identity teams are sitting at the chokepoint, granting permissions that double as consumption choices.

The shift isn’t about turning identity professionals into sustainability officers. It’s about recognizing that incentives travel with permissions. And when permissions scale through AI, the hidden costs travel with them.

So here’s my question for you: have you seen incentives around AI use in your organization, good or bad? And if so, how did those incentives shape the choices your teams made?

Because incentives aren’t just a policy issue or a compliance box. They’re the difference between governance, which you can explain to your board, and governance, which you only notice when the bill or the fine arrives.

If you’d rather track the blog than the podcast, I have an option for you! Subscribe to get a notification when new blog posts go live. No spam, just announcements of new posts. [Subscribe here] 

Transcript

[00:00:29] Hi everyone, and welcome back to A Digital Identity Digest. I’m Heather Flanagan, and today we’re going to talk about something that’s only just starting to make the headlines: what happens when AI agents run wild—and who actually ends up footing the bill.

Spoiler alert: it’s probably not the vendors themselves, and it’s probably not who you think inside your own organizations either.

[00:00:53] In this episode, we’ll explore:

The incentives driving AI adoption The role of identity in hidden costs The growing regulatory landscape around sustainability Setting the Stage

[00:01:04] What inspired today’s conversation is a recent Google report that finally revealed some long-awaited data: how much energy a single AI prompt consumes.

[00:01:20] Their findings? The median Gemini prompt uses about 0.24 watt hours of electricity.

[00:01:28] To put it in perspective:

That’s like running your microwave for one second, plus a few drops of water for cooling. At first glance, it seems tiny. But at scale, millions of these “drops in the ocean” can eventually flood entire continents.

[00:01:46] The real story isn’t about that single number. Instead, it’s about the incentives behind those numbers—who benefits, who pays, and how those dynamics shape AI deployment.

Lessons from the Cloud

[00:01:57] To understand today’s AI landscape, let’s rewind to the early days of cloud computing. Remember the pitch? “Save money, get rid of your data center—cloud computing for the win.”

[00:02:20] But by 2021, Sarah Wang and Martin Casado at Andreessen Horowitz highlighted the Trillion Dollar Paradox:

Cloud was amazing for speed and agility. Yet at scale, it dragged on profitability.

[00:02:30] Dropbox learned this firsthand, repatriating workloads from the public cloud and saving $75 million over two years—doubling their margins in the process.

[00:02:51] The key lesson? Early incentives reward adoption. But once costs balloon, discipline becomes a board-level issue.

[00:03:10] AI is following the same arc. We’re in the “woohoo adoption” phase now, but hidden costs are waiting to catch up.

Vendor Incentives

[00:03:24] Let’s start with the incentives for LLM vendors. These are crystal clear: encourage mass adoption.

[00:03:33] Vendors emphasize efficiency gains. Google bragged about a 33-fold reduction in energy per query between 2024 and 2025.

[00:03:43] Sounds impressive. But disclosures are:

Not standardized Highly selective Designed to flatter the vendor, not inform customers

[00:03:53] Meanwhile, the race for bigger, flashier, more capable models continues. The revenue comes in, but the energy, water, and carbon costs are left as someone else’s problem.

Enterprise Incentives

[00:04:09] For enterprises, the picture is murkier. Why? Because:

Cloud invoices hide the per prompt cost. IAM and security teams grant permissions but don’t own the sustainability budget. Sustainability teams lack visibility into entitlements.

[00:04:34] The result?

Over-provisioning goes unnoticed. AI agents run unchecked. Bills land on someone’s desk long after the fact—often someone who had no say in granting permissions.

[00:04:58] This is déjà vu from the cloud era. Ops pays the bill, developers enjoy flexibility, and the CFO discovers the hit too late.

Regulators Enter the Chat

[00:05:03] Unlike the early cloud days, regulators are already watching. ESG (Environmental, Social, and Governance) reporting is now mandatory in many regions.

[00:05:15] Examples include:

United States: SEC Climate Disclosure Rule, with fines already issued (e.g., Deutsche Bank’s $19M settlement). Europe: Corporate Sustainability Reporting Directive (CSRD), with penalties up to €10 million or 5% of turnover. France: Executives can face prison time for obstructing disclosures. Australia: Civil penalties can reach hundreds of millions, with directors personally liable.

[00:06:20] This isn’t fearmongering—it’s reality. Boards are accountable, and one AI prompt may seem trivial, but multiplied across millions of queries, it becomes a regulatory reporting item.

Where Identity Comes In

[00:06:38] Every AI agent action is more than a governance event—it’s also a consumption event.

Permissions = not just who can do what, but what we’re willing to pay financially and environmentally. An unused human entitlement is a risk. An AI with broad entitlements is a resource leak that runs until stopped.

[00:07:15] Imagine if audit logs didn’t just say who accessed what, but also recorded how much energy and water were consumed.

[00:07:24] That may sound futuristic, but sustainability reporting is moving that way. IAM teams could soon be pulled into ESG discussions—whether they feel it’s their role or not.

Governance Shifts

[00:07:37] Governance isn’t just about security anymore. With AI, it’s about balancing risk and resource consumption.

Runtime checks can throttle wasteful AI actions. Agents can be denied brute-force or high-cost queries. Entitlements can be revoked before they pile up into risks—or expenses.

[00:08:07] Governance now asks not only “Is this allowed?” but also “Is this worth it?”

History Repeats Itself

[00:08:14] Cloud should have taught us that ignored inefficiency becomes entrenched inefficiency. Once it’s embedded in infrastructure, it’s painfully hard to extract.

[00:08:38] AI is repeating that story—with water, energy, and carbon as the new currencies.

[00:08:54] When regulators demand transparency, boards will expect clear, defensible answers. And that’s where identity leaders can step up.

[00:09:01] Permissions sit at the choke point between agent intent and agent action. Expanding governance to include consumption metrics gives organizations a head start on both the bills and regulatory scrutiny.

Bringing It All Together

[00:09:16] To recap:

Vendors chase adoption and scale, not efficiency. Enterprises operate in silos that hide true costs. Regulators are introducing significant penalties for ESG misstatements. Identity teams control permissions, which now double as consumption risks.

[00:09:41] IAM professionals don’t need to become sustainability officers. But they must recognize that incentives travel with permissions—and when AI scales, costs scale too.

[00:09:57] So here’s the key question:
Have you seen incentives around AI use in your organization—good or bad? And how are those incentives shaping your team’s decisions?

Because incentives aren’t just about compliance checkboxes. They’re the difference between proactive governance, you can explain to your board, and reactive governance, you only notice when the bill—or the fine—lands on your desk.

Closing Thoughts

[00:10:23] That’s it for this episode of A Digital Identity Digest. If you found it useful, subscribe to the podcast or visit the written blog at sphericalcowconsulting.com for reference links.

[00:10:45] If this episode brought clarity—or at least sparked curiosity—share it with a colleague and connect with me on LinkedIn at lflanagan. Don’t forget to subscribe and leave a review on Apple Podcasts or wherever you listen.

Stay curious, stay engaged, and let’s keep these conversations going.

The post Who Really Pays When AI Agents Run Wild? Incentives, Identity, and the Hidden Bill appeared first on Spherical Cow Consulting.

Real estate professionals face rising AML scrutiny across markets. This article breaks down identity verification, source of funds, and beneficial ownership rules in the U.S., Canada, UK, EU, and Australia – and shows how iComply helps automate compliance across agents, lawyers, and lenders.

Real estate is a prime target for financial crime. High-value transactions, opaque ownership structures, and limited oversight have made the sector vulnerable to money laundering worldwide.

From regulators to investigative journalists, scrutiny is intensifying, compliance expectations are evolving. Brokers, lawyers, developers, mortgage professionals, and title companies all have a role to play.

Shifting AML Expectations in Real Estate United States Regulators: FinCEN, state real estate commissions Requirements: Geographic targeting orders (GTOs), beneficial ownership reporting (CTA), SARs, and KYC for buyers and entities Canada Regulators: FINTRAC, provincial real estate councils Requirements: KYC, source of funds verification, PEP/sanctions screening, STRs, and compliance program requirements (as reinforced by the Cullen Commission) United Kingdom Regulators: HMRC, FCA (for lenders), SRA (for law firms) Requirements: Client due diligence, UBO checks, transaction monitoring, and compliance under MLR 2017 European Union Regulators: National AML authorities under AMLD6 Requirements: Risk-based customer due diligence, UBO transparency, STRs, and GDPR-aligned reporting Australia Regulator: AUSTRAC (legislation pending for real estate-specific coverage) Requirements: AML risk management for law firms, lenders, and trust accounts; expected expansion to include property professionals Real Estate-Specific Risk Factors

1. Complex Ownership Structures
Use of shell companies, nominees, and trusts can obscure true buyers.

2. Source of Funds Obscurity
Large cash deposits or offshore funding require enhanced scrutiny.

3. Multi-Party Transactions
Buyers, sellers, agents, lawyers, lenders, and developers often use disconnected systems.

4. Regulatory Patchwork
Requirements vary by jurisdiction and professional role.

How iComply Helps Real Estate Professionals Stay Compliant

iComply enables unified compliance across real estate workflows—from individual onboarding to multi-party coordination.

1. Identity and Entity Verification KYC/KYB onboarding via secure, white-labeled portals Support for 14,000+ ID types in 195 countries UBO discovery and documentation 2. Source of Funds Checks Collect and validate financial statements, employment records, or declarations Risk-based automation of EDD triggers Document retention for regulator inspection 3. Sanctions and Risk Screening Real-time screening of all participants (buyers, sellers, brokers, law firms) Automated refresh cycles and trigger alerts 4. Cross-Party Case Collaboration Connect agents, legal counsel, and lenders in a single audit-ready file Assign roles, track tasks, and escalate within shared dashboards 5. Data Residency and Privacy Compliance Edge computing ensures PII is encrypted before upload Compliant with PIPEDA, GDPR, and U.S. state laws On-premise or cloud deployment options Case Insight: Vancouver Brokerage

A Canadian real estate firm used iComply to digitize ID checks and SoF verification for domestic and foreign buyers:

Reduced onboarding time by 65% Flagged two nominee structures linked to offshore trusts Passed a FINTRAC audit with zero deficiencies Final Take

Real estate professionals can no longer afford fragmented compliance. With global pressure mounting, smart automation ensures faster onboarding, better oversight, and fewer audit risks.

Talk to iComply to learn how we help brokers, lawyers, and lenders unify AML workflows – without slowing down the deal.

Open banking is rapidly becoming a critical plank of digital innovation in the financial services industry across both North and South America. Whether driven by regulation, market innovation, or consumer demand, the financial industry across both continents is increasingly embracing a standards-based, application programming interface (API)-first mindset in a bid to accelerate hyper-personalization, trust-based relationships, and value upsell.

 

While digital challengers continue to capture digitally-savvy customers, incumbent providers are scrambling to meet the increasing demand for seamless and customer-centric experiences in a bid to maintain competitiveness. What might come as a surprise, is this paradigm shift is underpinned by technical standards that govern financial-grade APIs (FAPIs) interacting with enterprise-grade identity and access management (IAM). 

 

The battle for market share in North and South American banking, and indeed the wider financial services industry, will hinge on the degree to which financial service providers embrace these technologies and industry standards and leverage underlying investments to deliver differentiated customer experiences.

 

Control how AI bots like Google-Extended and Applebot-Extended use your website content for training. Update your robots.txt file with simple Disallow rules.

Expanding our view toward six guiding principles for regenerative practice. Image: Dark Matter Labs. Adapted from Jan Konietzko, ‘Carbon Tunnel Vision’. Possibilities for the Built Environment, part 1 of 3

This is the first in a series of three provocations, which mark the cumulation of a collaborative effort between Dark Matter Labs and Bauhaus Earth to consider a regenerative future for the built environment as part of the ReBuilt project.

In this publication, we lay out the historical, professional and theoretical context for the contemporary push toward regenerative practice, and offer six guiding principles for a regenerative built environment, looking beyond profit tunnel-vision. In the second and third pieces, we propose pathways, configurations and indicators of the transformation our team envisions.

What isn’t regenerative? Debunking a misconception

When it was completed in 2014, Bosco Verticale, a pair of 40-story residential towers on Milan’s outskirts, was celebrated as an example of leading-edge regenerative building design for the 800 or so trees cascading from its balconies. In describing the project, its architect Stefano Boeri sketches the figure of the “biological architect”, who is driven by biophilia and prizes sustainability above other design concerns. Praise for Bosco Verticale, in the architectural press and beyond, implies that the development’s vegetal adornments represent a meaningful substitution of traditional building materials with bio-based ones, and further that measures supporting biodiversity constitute climate-positive architecture.

The list of green credentials associated with the project ignores other characteristics of Bosco Verticale that don’t align with this vision. The steel-reinforced concrete structure was designed with unusually substantial 28cm deep slabs to support the vegetation’s weight (which totals an estimated 675 metric tons) and associated dynamic loads. Considering that this slab depth is about twice that of comparable buildings without the green facade, the embodied carbon associated with the project’s 30,000m² floor slabs alone is approximately double that of a standard building.

In tandem, an existing workspace for local artists and artisans based in a former industrial building was demolished to make space for the premium residential units accessible only to the few. Although a replacement workspace was eventually built nearby, the structure’s regenerative aspirations are weighed down by profound contradictions beneath the leafy surface.

Certainly, Bosco Verticale is significant as an exceptional investment in urban greening on the part of the developer, and as a leading-edge demonstration of innovations that enhance the multiple benefits of green infrastructure. Bosco Verticale contributed to the viability of future developments that extend the geographic reach of urban greening discourse into new geographies: copy-cat schemes have been built in East Asia and elsewhere. However, it’s clear that Bosco Verticale fails to stand up to a holistic consideration of what regenerative building looks like. Many voices overlooked the social and material impacts of the project, instead dazzled by the urban greening.

Puzzle pieces of the regenerative

In recent years, societies worldwide have become familiar with weather events and political shifts that were unprecedented or previously unthinkable. Six of the nine planetary boundaries that demarcate the safe operating space for humanity were crossed as of 2023. There is now a strong case for the idea that our entangled human and planetary systems exist in a state of polycrisis. Bearing this in mind, what do we mean when we refer to a built environment that is regenerative?

This piece aims to add nuance and system-scale perspective to our working definitions. As examples like Bosco Verticale show, it’s possible to be green in the public eye while counteracting what is regenerative. Perhaps we need new methods to help us understand:

How long a building will last, How its materials will be stewarded, Whether it is built in a context that enables low-carbon living, And what its end of life might involve.

System-scale perspective is needed because the built environment cannot be disentangled from systemic needs like the demand for affordable housing and the reality of physical, material constraints. Although we do need initial demonstrations to spark change, a single, locally-sourced timber building constructed with ethical labour does not define wholly regenerative practice in itself.

What is regenerative?

Regenerative is the term of the moment, yet it remains loosely defined in public discourse: we rely on examples, implicit understandings, and theoretical frameworks to give it meaning. How, then, is it used in particular contexts?

Beyond ‘green’

Regeneration refers to approaches that seek to balance human and natural systems, allowing for coexistence, repair and self-regulation over time.

The regenerative paradigm seeks to look beyond what’s merely ‘green’, and to do net good. A broader lineage of thinking around the term spans agriculture, biology and ecology, medicine, urbanism and design: disciplines and industries that connect to the health and wellbeing of biomes, bodies and buildings. Variation in definition can be observed in different contexts, sectors and aims.

‘Regenerative’: a brief history of the term

The term regenerative began to gain traction in fields including agriculture and development to outline a new paradigm from the 1980s. The US’ Rodale Institute popularised the term ‘regenerative agriculture’ to describe farming systems that go beyond sustainability by improving soil, biodiversity and ecosystem health. The practices invoked are ancient, with precedents across the globe, and rooted in Indigenous land management. However, this specific application of the term ‘regenerative’ articulated an emergent attitude in this period that focused on renewal and improvement of ecological and social systems. The Rodale Institute advanced this concept through research, advocacy, farmer training, publications and consumer education geared toward regenerative organic agriculture, laying the groundwork for its integration into mainstream agricultural discourse and integration into other disciplines.

From the early 2000s, the work of Bill Reed and the Regenesis Institute for Regenerative Practice has anchored the application of regeneration to design fields and the built environment in particular. With a focus on ecosystem renewal and coevolution of human and natural systems, Reed’s framework implies that regenerative design goes beyond sustainability by restoring and renewing ecosystems, integrating humans and nature in a symbiotic relationship. Expanding this idea beyond ecology, many architects and urbanists have adapted Reed’s model to their own corners of their fields, looking for design that doesn’t simply do less harm, but does more good. Bauhaus Earth maps Reed’s familiar bowtie-shaped diagram onto four basic categories for the built environment: from conventional, to green, to restorative and finally regenerative–that which has the greatest positive environmental and social impact.

Across applications, several elements of a core meaning of what is regenerative exist: a focus on supporting systems of different scales to recover from loss, to take on new life, to grow responsively. The evocative nature of this idea, easily applied across different disciplines, has inspired a range of permutations and schools of thought.

Other key references on the regenerative:

1 Regenerative Development, Regenesis Group, 2016.

2 Regenerative Development and Design, Bill Reed and Pamela Mang, 2012.

3 Shifting from ‘sustainability’ to regeneration, Bill Reed, 2007.

4 Towards a regenerative paradigm for the built environment, Chrisna du Plessis, 2011.

5 Doughnut for Urban Development, Home.Earth, 2023.

6 The Regenerative Design Reading List, Constructivist, 2024.

Image: Bauhaus Earth, adapted from Bill Reed’s ‘Trajectory of Ecological Design’

The term’s uses have gained traction and proliferated within the particular historical context of the last half-century, during which concepts like the anthropocene and the full extent of human impact on the planet have been evidenced. As technology has enabled our understanding of the ways in which humanity has degraded our environments — at scales from the cellular to whole earth systems — to grow, so too has our desire for models that point to possible ways to repair this damage. Conceptualising the regenerative across scales and disciplines opens the door to alternative futures in which planetary demise at the hands of humans is not inevitable. The application of the core elements of regenerative theory to fields like architecture has spurred a range of generative and planet-benefitting practices. However, these individual actions, and even the rise of the sustainability paradigm across design fields, cannot override the prevailing limitations of capitalism that continue to increase rates of extraction, social inequality and environmental degradation. As it stands, regenerative approaches continue to be exceptions working against the odds.

The main limitation: political economy

These frameworks were written within academic and industrial contexts, largely from a Western, wealthy nations’ perspective. While regenerative thinking has inspired thinkers across the planet and across fields, attempts to translate these concepts into a global, political economic scale fails to account for deep-seated inequalities. We are limited by the systems and power imbalances in which we’re working. Capitalism, in particular, compounds these blindspots, limiting attempts to translate regenerative thinking into other spaces such as the built environment. As such, while trailblazing organisations, communities and individuals are offering proofs of possibilities in regenerative infrastructure and urbanism, these are currently exceptional cases. It is not yet evident how these ideas can be instantiated at scale to benefit all people and meaningfully address systemic inequalities.

The role for and responsibilities of professionals

The interconnected challenges of this moment invoke new layers of complexity. But if professionals can’t understand or deploy the idea of regeneration, then it won’t guide their decisions and actions.

Extractive activities led by the industrialised global North continue to irreversibly alter our planet at pace, while the transition to renewable energy will involve even higher rates of extraction of critical minerals than those of today. As such, the earth’s systems’ ability to regenerate is stressed more than ever. The built environment, with its outsized responsibility for global carbon emissions associated with construction, building operations and demolition, must admit these impacts and face up to its epoch-defining responsibility. So how do we get off the one-way road of identifying problems without solutions?

There is a separation between perceived responsibility and power in today’s professional landscape. This moment necessitates a shift from individual to collective agency in taking on advocacy for the regenerative potential of the built environment.

Imagine this: you are an architect today, trying to answer the client’s brief by maximising the use of responsibly-sourced bio-based materials, embedding social justice in your design processes and objectives, and considering carbon-storage potential and place stewardship for future generations, while accepting that your brief is to create market-rate apartments. This is nearly impossible in the context of today’s imperative to maximise profits and commodify housing. Architects in the current professional environment are profoundly limited in means to meaningfully address these intersecting priorities, whether one at a time or in concert. Our current economic system simply does not position architects to be the core innovators, as much as Stefano Boeri’s reflections on the Bosco Verticale boast otherwise.

These professional limitations are an indirect signal of the political economy of real estate development and the power relations underpinning the construction industry. Only a systemic shift can address the limitations facing individuals operating within a design scope. To genuinely take on the intersections of ecology, social justice and the built environment, architects need to see their work for all its entanglement with the broader political, economic and social forces, using the tools of the profession and connections, bolstered by connections with aligned collaborators, and their collective power to dismantle the systems of power that limit transformation at across scales.

We’re orienting ourselves toward a future in which there is more latitude for these crucial priorities to be addressed. This future will hold an altered scope for decisions made by architects and other built environment professionals in the course of development processes, and a transition to a regenerative built environment driven by collective commitment.

A growing field: precedents and trailblazers

A range of contemporary initiatives, programmes and projects aim to establish frameworks to define the idea of a regenerative built environment. Drawing on advancements in circular economic thinking, increasing recognition of the significance of embodied carbon in addition to operational carbon in buildings, and as the industry’s understanding of indicators like biodiversity and water use that are tied to planetary boundaries grows, these programmes help experts and the general public to move beyond misconceptions.

Bauhaus Earth emerged in 2021 as an initiative around the use of timber and other bio-based materials for construction and their ability to store carbon. Today, Bauhaus Earth is a research and advocacy organization dedicated to transforming the built environment into a regenerative force for ecological restoration. It brings together experts from architecture, planning, arts, science, governance, and industry to promote systemic change in construction practices.

Index of aligned enquiries

A global range of community-led and grassroots organisations focusing on the work and needs of underserved groups receive grant funding from and can be discovered via the Re:arc Institute.

Non-Extractive Architecture(s)’ directory gathers a global index of projects that rethink the relationship between human and natural landscapes, alongside questions about the role of technology and politics in future material economies. The directory is an ongoing project itself.

A range of related organisations and initiatives in the working ecosystem of Europe can be found in the table below. The range in types of these enquiries represents the broad coalition of stakeholders and types of activity that will be required to activate transformation toward a regenerative built environment.

Index of related initiatives in Europe. For links, see the end of this post.

Bio-based building materials are an important nexus of social and material relations. These materials, which bridge human and earth-based capacities for creation, urge an expanded view of stewardship. Understanding this will enable us to move past a paradigmatic dichotomy between the human and the natural, which enables humans to exploit planetary resources. Bio-based building materials were humans’ first building materials, and over millennia the practices, most notably agricultural and indigenous ones, that created the materials we work with today, have developed in concert with human civilisations and material realities. Holding these strands together, it’s evident why a maintained focus upon bioregionally-sourced and bio-based materiality is crucial for a regenerative future.

For a contemporary design and research practice that focuses on this intersection of agendas, see Material Cultures.

Regeneration across time horizons: shortsightedness and the Capitalocene

As Reed’s Trajectory of Ecological Design diagram and the examples above indicate, regeneration of ecosystems and societies are continuous, open-ended processes that occur over time, at scales from the cellular, to the neighbourhood, and to the planetary. As the repair and balancing of regenerative processes have occurred in many contexts across eons, we need to understand regeneration across multiple accordant time horizons. Within this complex and extensive landscape, time horizons can act as organising units that help make sense of interconnections and nested scales of action.

In construction, key processes take place across different timescales. These range from time needed for a regenerative resource such as a forest to grow, to the lifespan of a building, to the longer time periods associated with meaningful carbon sequestration. In each of these cases, regenerative interventions involving acts of maintenance and design directly modulate the temporal register of the built environment. For example, extending a building’s lifespan through processes of care and preventing demolition impacts the future form of its locale and pushes back against the conceptualisation of buildings strictly as sources of profit within capitalist logic–that is, viewing buildings primarily in terms of their capacity to generate immediate economic returns through cycles of development, exploitation and obsolescence. By this means, it is within the medium of time that a regenerative lens on the built environment can be most revealing.

Regeneration in deep time and at the timescale of ecosystems has been disrupted by human processes. We are accustomed to the idea of the Anthropocene, in which an epoch defined by human activity has become the dominant influence on climate and the environment, which was initiated by the industrial revolution. However, recent discussions by Jason W Moore, Andreas Malm and others offer a critique of this concept in making the case for the Capitalocene as a more precise term. Rather than treating humanity as a homogenous force as Anthropocene theory does, the Capitalocene examines how differences in responsibility, power and agency within societies have been compounded in the context of the capitalist system, and how this system has driven ecological crisis. Rather than humanity as a whole, Moore argues that we should examine how the social, economic and political processes that have shaped recent centuries, and which reach back to the early modern period, provide a better basis for understanding the relationship between human activity and planetary wellbeing, and how this dynamic produces ecological crises. Using this focus on the un-natural and political origins of the crisis we face today, it’s possible to see how shifting senses of responsibility, agency and relationships, operating against capitalist logics, are essential for developing effective pathways toward planetary regeneration. In the predominant logic of the Capitalocene, short-term profits, increases in productivity, and optimisation around flawed ideas of efficiency are necessitated–and regeneration could be mistaken for a loss, an indicator of inefficacy, a concession to the ineffable–and as such, unwarranted. This is the systemic logic that must be resisted.

The prevalence of demolition today is one example of how this systemic short-sightedness is bad for people and the planet. The UK is now facing the consequences of the prevalent use of reinforced aerated autoclave concrete (‘RAAC’), in municipal buildings nationwide during the 1980s. With a material lifespan of only 30 years, many hospitals and schools built of RAAC are now being demolished. Indeed, the lifespan of many of the structures that are most viable in our current urban development models are steadily decreasing in spite of increasing awareness of the embodied carbon impacts of demolition.

We would do well, in looking toward a regenerative future for the built environment, to retune our time horizons. This might involve syncing carbon sequestration time with lifecycles for construction that create value over time, taking into account things like municipal land leases and emerging whole life carbon regulations. What if we had a way to see the long-term impact of decisions made today?

In this effort to hold more timescales in mind when we consider processes of regeneration, we can learn a great deal from indigenous cultures from across the world, many of whom have developed, over the course of millennia, methods and ideologies supporting the human ability to connect with scales of time beyond our species-specific and news-cycle dependent parameters. Some of these examples are evidenced in the above Index of enquiries.

Theoretical underpinnings: what constitutes a regenerative built environment?

The built environment is both a physical and a social construct: it’s not fitting in this moment of polycrisis to continue to abstract the physical materials that shelter us from the labour that built them, the livelihoods that maintain them, the design processes that make them fit for purpose, and the policies or decisions that keep them standing.

To identify ways to directly address the injustices to people and the planet engendered by the Capitalocene, we need to look to historical and political decisions that have driven the crises in housing affordability and race-based inequality that are defining features of cities today. In recent years, there has been a greater focus on how the built environment can benefit from the application of lenses that focus on the distribution of power and agency within societies, including critical theory and urban political ecology. These approaches can help us to articulate how the built environment and natural resources can be viewed in the context of human struggles to meet their needs in the context of today’s critical conditions.

David Harvey, most notably in Social Justice and the City, points to how a purely quantitative or spatial design-based approach to understanding urban space consistently fails to engage socioeconomic phenomena like inequality and urban poverty, while arguing for the necessity of approaches that integrate the spatial with the social. Harvey’s reading, grounded in radical geography, makes clear how spatial development processes are driven by financial capital, which keeps governments, civil society, communities and individuals in predetermined roles, ill-equipped to resist the calcification of capitalised space. Recently, climate justice movements like the Climate Justice Alliance (on the grassroots side) have formed alliances with decision-makers and activists in the built environment around causes like health and buildings, retrofit poverty and feminist approaches to building, under banners like a Global Green New Deal, in which a spatialised social justice lens can be directly applied.

Harvey’s work is a key influence on urban political ecology approaches, which assist us in understanding of how cities are hybrids of natural and social processes, rejecting a dichotomy between people and nature. Similarly, Marxist political economic thinkers like Raymond Williams have pointed to how capitalism organises space and produces environmental inequalities, as analysed using multiscalar analysis, among other techniques. Through a political ecology lens, we see that developers and investors, not communities or ecological needs, shape the built environment, often through speculative real estate practices that exploit labour and resources. These critiques of the built environment emphasise that urban development is driven primarily by capitalist interests, prioritising profit over social and environmental well-being, leading to inequality, displacement, and environmental degradation. Theory can support an analysis of exclusion in planning, and advocacy for participatory processes that could support socially regenerative places.

In sum, focusing exclusively on buildings misses the point that cities are fluid, open, contested multivocal landscapes. At scales from the individual building, to the neighbourhood, including infrastructure like street systems, as well as cities and regions, the built environment is a negotiation between matter, human behaviour and social systems over time.

As we look to the future, how will our urban environments be produced? Who will benefit from them? And how can we challenge the environmental injustices inherent to the systems we live in?

Guiding principles for regenerative practice Six layered principles for a regenerative built environment

Expanding our definition of what’s regenerative in the built environment calls for clear ways to speak to the material, economic and social dimensions of cities. We need ways of accessing and assessing regeneration that cut across disciplinary boundaries, invite broader participation in these conversations, and account for future risks and technological developments.

What layers and principles might expand and deepen our understanding of systemic interactions as we work toward more holistic indicators? Below are six suggestions to focus our gaze.

Time horizons and generational preparedness

Future indicators of a regenerative built environment must take a long-term view. If the built environment is to form a matrix in support of human life for generations to come, it should fundamentally be building material preparedness for the future. This means the way we measure and quantify what the built environment does ought to speak to this extended time horizon, for example by considering how much carbon is stored for three generations to come, how much of our timber is sourced in a way that will allow for replanted trees that will mature over decades, or how much of a building’s material stock can be disassembled and reused within the same settlement.

Today we have standard metrics like Floor Area Ratio (FAR) that are aligned with present development models and profit-driven logics requiring maximum saleable use of space, fundamentally constraining possibilities for the built environment. Foregrounding time horizons for change enables retooling of these ways of measuring cities, focusing not on short-term, singular profits and benefits, but rather on the future generations and our planetary resources.

Geopolitical resilience and security

Future indicators for a regenerative built environment should address the geopolitical stakes of decisions.This is especially relevant now in Europe, with regard to geopolitical dynamics within and between the US, Russia and China, in light of multipolarity and the EU Strategic Autonomy conversation. Can we refashion the socioeconomic and material dependencies in cities so that they are resilient to the crises that may face future generations, while supporting enhanced responses to geopolitical dangers? We should look to modes of resilience that address the political and economic systems that exacerbate geopolitical precarity, such as the extractive nature of global trade, and the ongoing influence of multinational corporations in shaping environments across scales. The status quo propositions toward resilience often fall short of addressing geopolitical power structures.

Place-based and planetary approaches

Future policies and indicators should adopt a multiscalar view that takes into account the unique local context to which it’s applied, as well as the transformative potential and influence interventions may leverage across scales (e.g. throughout the value chain). Contextual specificity is associated with direct impact in regenerative efforts, but these must be connected to transformative change that fundamentally alters the properties and functions of systems.

Living systems approach

Actions should help to shift thinking towards more holistic and ecocentric worldviews, in which non-capitalistic, nature-centred systems of values are given primacy. This layer considers interventions as part of dynamic social-ecological systems rather than isolated components. It is crucial to see these social-ecological systems for their complex adaptive qualities, in which people and nature are inextricably linked.

A living systems approach supports biogenerative thinking, in which processes, systems, or designs that actively promote, support, and regenerate life — both biological and ecological — create conditions for continuous growth, renewal, and self-sustaining ecosystems.

Co-evolutionary and community-led

Interventions should structurally empower communities to act and evolve in line with their ecosystems. Structural empowerment means building systems and resources to make communities stronger and self-sufficient and allowing nature to flourish in tandem. This approach foregrounds the utility of feedback mechanisms from nature, like soil health indicators, phenological changes, and biodiversity and species presence, to support the co-evolution and improvement of social-ecological systems.

Supporting holistic value creation

A regenerative built environment should operate on the basis of a broad definition of value, from economic, to ecological and social. As the theoretical approaches discussed previously indicate, the built environment is a hybrid of natural and social processes occurring in the constraints of systems that thrive on extraction and inequality. A holistic approach that combines material, interpersonal and spatial integrators to consider what is regenerative generates cascading value across multiple scales.

“Measuring the impact of regenerative practices on living systems must therefore recognise entangled systemic value flows. Current economic approaches fail to account for this complexity.”

— Dark Matter Labs, A New Economy for Europe’s Built Environment, white paper, 2024

Conclusion

In the context of the polycrisis, we need to move beyond notions of sustainability, toward, as Bill Reed’s diagram suggests, creating healthy, counter-extractive communities and bioregions that can scale from exceptions to define new norms.

Embracing a broadened definition of regenerative practice — one which is informed by the historical and contemporary context of such practices — will evidence the potential contradictions and tensions in the current system. Deploying multimodal metrics and indicators, of the type that the principles introduced in this piece imply, will enable new thinking for net-regenerative outcomes in our cities. Without redirecting our points of orientation toward these six principles, even motivated actors will be limited by today’s system, which allows only for shifting of blame and incremental, localised improvements in the status quo. We will never reach a regenerative built environment without transformational change.

Further pieces in this series will explore in more detail the systemic shifts we envision, pathways toward regenerative practice, and possible indicators for recognising progress.

This publication is part of the project ReBuilt “Transformation Pathways Toward a Regenerative Built Environment — Übergangspfade zu einer regenerativen gebauten Umwelt” and is funded by the German Federal Ministry for the Environment, Nature Conservation, Nuclear Safety and Consumer Protection (BMUV) on the basis of a resolution of the German Bundestag.

This piece represents the views of its authors, including, from Bauhaus Earth, Gediminas Lesutis and Georg Hubmann, and from Dark Matter Labs, Emma Pfeiffer and Aleksander Nowak.

Additional links: Built By Nature Material Cultures Ecococon LUMA Arles / Le Magasin Électrique HouseEurope! Rotor Gleis 21 Home Silk Road Kalkbreite La Borda Living for Future Habitat for Humanity Poland

What’s guiding our Regenerative Futures? was originally published in Dark Matter Laboratories on Medium, where people are continuing the conversation by highlighting and responding to this story.

The post How Businesses Can Detect Crypto Fraud and Protect Digital Assets appeared first on uqudo.

Discover how the UK Online Safety Act 2023 and the EU Digital Services Act differ on age verification, compliance, and platform accountability to protect children online.

The post Online Safety Act 2023 vs. EU DSA: What You Need to Know first appeared on ComplyCube.

We spoke with Kai Stuebane, Managing Director for DACH at Docusign, to explore how secure digital identity verification is transforming digital signing amid Germany’s evolving regulatory landscape.

From navigating increasing compliance demands to delivering seamless user experiences, we discussed why eID (Electronic Identification) is becoming a strategic priority for faster, more secure, and legally compliant digital signatures – and how Docusign’s partnership with IDnow is empowering enterprises to stay ahead with secure, scalable and user-centric digital workflows.

Why now: Perfect conditions for eID to scale In today’s rapidly evolving regulatory landscape, particularly in Germany but also across Europe, digital identity is becoming increasingly significant. From Docusign’s perspective, what factors are driving the growing importance of secure digital identity solutions in the enterprise environment? 

First, regulatory compliance is a major driver. Regional laws such as eIDAS, and the impending eIDAS 2.0 in the EU are enhancing the need for digital authentication solutions across the region by introducing initiatives such as European Digital Identity Wallets (EUDI). In Germany, the focus on digital trust services, enforced by institutions such as BaFin and regulations like GwG, demand robust, verifiable digital identity solutions. Enterprises must meet strict requirements for customer identification and authentication when signing or executing agreements electronically. 

Second, security concerns and fraud prevention are top priorities. According to a recent Docusign global survey into the identity verification landscape, 70% of organisations agree that identity fraud attempts are on the rise, as remote and hybrid work models become the norm and businesses continue digitising their operations. As a result, companies require robust authentication solutions that ensure document integrity and signer identity across borders and devices.

A third major driver is that user expectations have shifted. Both customers and employees now expect seamless, secure digital experiences, with 50% of organisations actually prioritising customer experience over fraud prevention, given its perceived importance. Organisations like Docusign enable enterprises to deliver this through a frictionless signing experience while maintaining high standards of security and trust. For example Grenke who, in addition to offering IDnow’s videoident process through Docusign, decided to also add the new eID capability in order to offer more convenience to their customers.  

Finally, digital transformation continues to accelerate. Enterprises are modernising legacy workflows at an exponential rate, and secure digital identity is foundational to automating agreement processes end-to-end. Digital-first solutions empower businesses to operate faster, more efficiently, and with greater legal certainty – particularly in highly regulated markets like Germany.

As Germany advances its digital transformation initiatives, how do you anticipate electronic identification (eID) solutions will reshape document signing processes for both enterprises and consumers in the German market?

There is an overall shift within the identity verification and authentication landscape  where organisations are actively seeking-out solutions that enable them to maintain security and compliance, without impacting the user experience.  

For enterprises, eID solutions will help streamline identity verification, enabling faster onboarding, contract execution, and compliance with stringent regulatory requirements such as eIDAS and Germany’s Trust Services Act. Again, take Grenke as an example, the ability to integrate German eID schemes into their existing signing workflow – especially for digital signatures – means they can ensure the highest level of legal validity while reducing manual processes and streamlining the customer experience.

For consumers, eID will offer a more seamless and familiar experience whilst maintaining security – something we pride ourselves on delivering here at Docusign. With familiar national identity methods integrated into digital transactions, users will be able to verify their identity and complete agreements with confidence and ease. This not only enhances trust but also accelerates adoption in regulated sectors like finance, insurance, and real estate.

Through our partnership with IDnow, Docusign is committed to supporting the German market by leaning into evolving regulations and integrating eID solutions into its portfolio, meeting local regulatory needs while delivering the trusted experience that users expect.

The eID advantage: Seamless UX meets compliance How can Germany unlock and accelerate the full potential of eID?

Based on our experience, accelerating eID adoption in Germany hinges on three key factors: user experience, awareness, and interoperability. 

First, simplifying the user experience is critical. For individuals to embrace eID for digital agreement completion, the process must be intuitive, fast, and secure. Reducing friction, such as removing lengthy registration steps or complex verification methods, can significantly increase user adoption. By leveraging the familiar eID methods, this will streamline this experience while maintaining high levels of identity assurance.

Second, education and awareness are essential. Many individuals are unaware that their national eID can be used as part of the digital agreement process. Promoting the benefits (legal validity, security, and convenience, etc.) will help build trust and drive usage across different age and user groups.

Third, ensuring broad interoperability with public and private identity schemes is key. Businesses need confidence that the eID solutions they implement will work across sectors and meet local (GwG) and regional (eIDAS) regulatory standards.

In what ways has Docusign enhanced its signing workflows by incorporating eID with other IDnow-powered verification solutions?

Docusign has a long-standing partnership with IDnow. The evolution of this partnership to now include IDnow’s eID capabilities enhances the security and user experience of its joint offering in the following ways:

Automation: Customers can make the most of an Identification method that simply relies on  the electronic identification (eID) function of the German national identity card.  Security: Two factors of authentication for additional security:  PIN entry  Scanning of the near field communication (NFC) chip contained within German eIDs  Familiarity and ease of use: not only are eIDs increasingly adopted across Germany, but the fact we leverage new technology such as NFC provides an additional element of ease of use. Real-world application: GRENKE’s eID-first transformation For businesses that already use Docusign but haven’t yet implemented eID-based signing, what are the key benefits they might be missing out on?

Ultimately, we can distill the key benefits to: 

Increased completion rates, driven through familiarity: enable customers to use their German eID for straightforward, intuitive identity verification that supports compliance obligations.  Secure, simplified signing:  built-in security enhancements (i.e. use of PIN, scanning of NFC, etc.) mean that SMS re-authentication and live video interactions are no longer required, resulting in an even faster identification process for signers. Storage and centralisation of key identity information: continue to download or easily access required signer identity information through Docusign and IDnow, to demonstrate compliance with BaFin GwG requirements  Can you share a real-world example of how a customer of Docusign is using eID to improve efficiency and achieve measurable business outcomes?

A strong example is our long-standing collaboration with Grenke, a leading provider of leasing and financing services. For several years, Grenke has enabled customers and dealers to digitally sign contracts using Docusign eSignature, with IDnow’s VideoIdent solution supporting identity verification.

Recently, Grenke enhanced this process by integrating IDnow’s eID solution as an alternative verification method. The impact has been clear: the introduction of eID has helped Grenke accelerate contract turnaround times, reduce reliance on physical materials, and improve the overall user experience. This has translated into greater operational efficiency, enhanced customer satisfaction, and measurable progress toward the company’s digital and sustainability goals.

What’s next: Looking beyond legal requirements As we anticipate the implementation of eIDAS 2.0 and the European Digital Identity framework in the coming months, how do you envision these regulatory advancements shaping the evolution of electronic identification and digital signature solutions across Germany and the broader European market?

These regulatory advancements will establish a unified, interoperable framework for digital identity across EU member states, enabling individuals and businesses to authenticate and complete digital agreements securely and seamlessly across borders. For Germany, this means greater alignment with a pan-European standard that facilitates trust, legal certainty, and smoother cross-border transactions.

eIDAS 2.0 introduces the concept of the European Digital Identity Wallet (EUDI), which empowers citizens to manage, store and share verified identity attributes as they wish. This will significantly enhance user control, reduce onboarding friction, and boost adoption of high-assurance digital signatures, particularly Qualified Electronic Signatures (QES). At Docusign our stated ambition is to become an federator of identities, where all EUDI wallets are available through our platform . 

For businesses, these changes will reduce complexity in managing multiple identity systems while improving compliance and scalability. 

We’re excited for what’s to come. 

Interested in more from our customer conversations? Check out: Holvi’s Chief Risk Officer, René Hofer, sat down with us to discuss fraud, compliance, and the strategies needed to stay ahead in an evolving financial landscape.

By

Nikita Rybová
Customer and Product Marketing Manager at IDnow
Connect with Nikita on LinkedIn

Mariane ter Veen to speak on responsible AI adoption at MyData 2025 from 24 Sep 2025 till 26 Sep 2025 Trudy Zomer 14 September 2025 - 16:36 Helsinki, Finland 60.110698558061, 25.01868035

We’re excited to announce that Mariane ter Veen, INNOPAY’s Director Data Sharing, will speak at the MyData 2025 conference, taking place in Helsinki from 24–26 September 2025.

MyData 2025 is one of the world’s leading conferences on human-centric data sharing, bringing together innovators, policymakers, and experts from across the globe. This year’s programme highlights the growing importance of digital sustainability, with a dedicated track exploring how organizations can innovate responsibly in the age of AI.

In her session, Mariane will introduce INNOPAY’s Triple AI framework (Access, Integrity & Intelligence): a practical approach to adopting artificial intelligence effectively, responsibly, and sustainably. She’ll share insights on how organizations can:

Align digital innovation with societal values while safeguarding trust and inclusivity Gain control over AI strategies to unlock responsible innovation at scale Create long-term value by linking environmental, social, and economic sustainability goals

Drawing on INNOPAY’s expertise in creating trusted digital ecosystems, Mariane will explore how AI, data, and governance can work together to deliver innovation with purpose.

Event details
 

Date: 24–26 September 2025
Location: Helsinki, Finland
More information — MyData 2025 programme

Mariane ter Veen to speak at Andersen Lab conference on digital sovereignty from 23 Oct 2025 till 23 Oct 2025 Trudy Zomer 14 September 2025 - 16:25 NEMOS Suite, Frankfurt, Germany 50.121329352631, 8.6365638

On 23 October, Mariane ter Veen, Director Data Sharing at INNOPAY, will deliver a keynote at an exclusive Andersen Lab conference in the NEMOS Suite in Frankfurt.

In her session, "The next competitive edge: building a sovereign and sustainable digital future," Mariane will highlight how organisations can leverage digital sovereignty and sustainable data ecosystems to gain a competitive advantage.

Andersen Lab hosts high-level conferences for executives, innovators, and strategic decision-makers driving digital transformation. These events combine thought leadership and in-depth knowledge sharing in an exclusive, focused setting

Date and location
23 October 2025
NEMOS Suite, Frankfurt, Germany

For more details and registration go to the event website.

Mariane ter Veen to speak at Andersen Lab conference on digital sovereignty from 04 Nov 2025 till 04 Nov 2025 Trudy Zomer 14 September 2025 - 16:22 hotel Jakarta, amsterdam

On 4 November, Mariane ter Veen, Director Data Sharing at INNOPAY, will speak at an exclusive Andersen Lab conference at Hotel Jakarta in Amsterdam.

In her keynote, "The next competitive edge: building a sovereign and sustainable digital future," Mariane will explore the strategic importance of digital sovereignty and how organisations can use it to create sustainable competitive advantage.

Andersen Lab organises exclusive, small-scale conferences for C-level executives and decision-makers in the financial and technology sectors. The events bring together thought leaders to share insights, explore visions, and shape the digital future.

Date and location

4 November 2025
Hotel Jakarta, Amsterdam, the Netherlands

For more details and registration go to the event website.

Face ID search technology has rapidly evolved, becoming a standard feature in smartphones. In 2025, its capabilities are expected to expand even further, offering a seamless, secure, and personalized experience for users. This blog explores the future of Face ID search in smartphones, how it integrates with existing technology, and the potential benefits and challenges of this advancement.

 

What is Face ID Search?

It is a technology that uses facial recognition to unlock smartphones and enable various features such as security, payments, and app access. Unlike traditional password systems, it allows users to unlock their devices by simply looking at them, using the unique features of their faces as identification.

This technology has come a long way since its inception and continues to evolve with advancements in 3D facial recognition and other biometrics. By 2025, Face ID will likely be even more accurate, efficient, and secure.

 

How Facial ID Recognition Works

It relies on advanced facial recognition algorithms and hardware, such as depth sensors, infrared cameras, and AI-powered software. It captures the unique features of a person’s face, including the distance between their eyes, nose, mouth, and other defining characteristics.

In the case of smartphones, Face ID works by:

Scanning your face using a 3D depth sensor to create a detailed map of your features. Comparing the scanned data to the stored template to confirm your identity. Unlocking the device or allowing access to apps, payment systems, and more once the match is confirmed.

This process is both fast and secure, offering a more convenient method of authentication compared to traditional PIN codes or passwords.

 

The Future of Face ID Search in Smartphones (2025)

As we look toward the future of smartphones, Face recognition is set to play an even more central role. Here are some expected advancements:

 

1. Improved Accuracy with 3D Facial Recognition

Currently, Face ID systems rely on 2D mapping and some 3D depth sensors for better security. However, by 2025, 3D facial recognition will likely become the standard for even more accurate and precise identification. With the integration of advanced 3D facial recognition, your smartphone will be able to detect your face from multiple angles, providing enhanced security and reducing the risk of errors in recognition.

 

2. More Personalized User Experience

It will move beyond just unlocking your phone. By 2025, smartphones will likely offer a personalized user experience based on facial recognition. For instance, Face ID search could automatically:

Adjust screen brightness or display settings based on your face. Personalize app suggestions or content based on your past preferences. Unlock specific apps and features automatically when the phone detects that you are looking at it.

This level of personalization can enhance user engagement and make smartphone interactions more intuitive.

 

3. Facial Recognition for Payments and Secure Transactions

Already, smartphones with Face ID capabilities allow users to make payments through mobile wallets like Apple Pay or Google Pay. By 2025, face unlock for payments will become even more common and secure. We may see Face ID search systems that can perform secure transactions, even without the need for an additional password or PIN. This will make financial transactions quicker and more secure for users.

 

4. Integration with Augmented Reality (AR)

Augmented reality is quickly gaining popularity, and Face ID search will likely integrate seamlessly with AR experiences. Imagine using your smartphone’s facial recognition to control AR experiences unlocking virtual environments, personalizing characters, and interacting with digital content. 3D facial recognition will provide accurate data to ensure a more immersive experience, enabling personalized AR interactions based on your facial features.

 

5. Enhanced Privacy and Security Features

With the growing concern over digital privacy, the future of Face ID search will focus on enhancing security measures. Face unlock technology will be enhanced to ensure that it is more difficult for people to bypass the system. Expect additional layers of security such as liveness detection, where the phone can determine if it’s looking at a real face (not a photo or video), or multi-factor authentication (combining face recognition with voice or fingerprint authentication).

 

Its Impact on the Smartphone Industry

The introduction of Face ID is already changing the way we interact with our smartphones. By 2025, it will likely have a profound impact on various industries:

 

1. Mobile Payments and E-Commerce

As smartphones adopt Face ID search technology, mobile payment and e-commerce platforms will see an uptick in secure transactions. Users will no longer need to fumble with passwords, credit cards, or PINs. Just a glance at their phone will be enough to authorize payments, making online shopping and in-store purchases more efficient.

 

2. Smartphone Security

Smartphone security will continue to evolve. With improved facial recognition technology, phone manufacturers will likely be able to deliver a much higher level of security. This could reduce the likelihood of data theft and unauthorized access, making smartphones much more secure.

 

3. Privacy Concerns

As Face ID search becomes more widespread, privacy concerns are likely to rise. Many people worry about the potential for their facial data to be stored and misused. The smartphone industry will need to address these concerns by implementing stronger encryption and giving users control over their data.

 

Challenges and Concerns in the Future of Face ID Search

While Face ID search has many advantages, it does come with its challenges:

 

1. Privacy and Security Risks

Storing and using facial data raises privacy concerns. If this data is hacked or stolen, it could lead to identity theft. To combat these risks, manufacturers will need to adopt robust encryption and make sure that personal data is stored securely.

 

2. Facial Recognition Accuracy

While facial recognition technology has improved, it’s still not flawless. Factors such as lighting, aging, or facial hair changes can affect recognition. As we move toward 2025, more accurate 3D facial recognition systems will likely emerge to minimize these issues.

 

3. Increased Dependency on Facial Recognition

As more tasks are tied to Face ID search, users may become overly reliant on facial recognition for security. This could present issues if the system fails or the user’s facial features change significantly due to injury or surgery.

 

Conclusion

The future of Face ID search in smartphones looks promising. By 2025, it will be more accurate, secure, and integrated with other technologies, enhancing the user experience and providing improved functionality. Whether for security, payments, or personalization, Face ID search will be a key player in how we interact with our smartphones.

If you’re a business or developer interested in incorporating facial recognition technology into your app, tools like Recognito’s Face ID SDK can help. Tested under the NIST FRVT 1:1 case study, it delivers reliable performance while prioritizing both security and privacy. Recognito offers robust, easy-to-integrate solutions for adding face unlock features into your products. To learn more and explore the implementation, you can also visit Recognito’s GitHub repository.

The future is looking brighter with Face ID search, but it’s essential to address privacy, accuracy, and security concerns as the technology continues to evolve.

 

Frequently Asked Questions

1) What is Face ID search, and how does it work?

Face ID search uses facial recognition technology to unlock your smartphone by scanning unique facial features and matching them to a stored template.

 

2) Is Face ID search more secure than traditional passwords?

Yes, Face ID search is more secure as it uses biometric data, which is harder to guess or steal compared to traditional passwords.

 

3) Can Face ID search be fooled by photos or videos?

Modern Face ID systems use liveness detection, making it difficult for photos or videos to fool the system.

 

4) What happens if Face ID search doesn’t recognize my face?

If Face ID fails, you can unlock your device with an alternative method like a password, PIN, or fingerprint.

 

5) Will Face ID search work if my face changes significantly (e.g., due to aging, makeup, or injury)?

Face ID can adapt to minor changes but might struggle with significant changes like severe injuries or drastic aging.

The post Rethinking Enterprise IAM Deployments with Radiant Logic’s Cloud-Native SaaS Innovation appeared first on Radiant Logic.

Service Resumes — DF153 Completes and DF154 Launched Predictoor DF153 rewards are available after a temporary disruption in service — no rewards were lost in the process. DF154 ran September 4th — September 11th, 2025 1. Overview

Data Farming (DF) is an incentives program initiated by ASI Alliance member, Ocean Protocol. In DF, you can earn OCEAN rewards by making predictions via ASI Predictoor.

Data Farming Round 153 (DF153) completed on September 4th following an unexpected disruption in service that began on Wednesday, August 6th and was fixed by Monday, September 1st. No Predictoor rewards were lost in the process. Rewards due from August 6th to September 1st will be available as part of the usual rewards-claiming process.

DF154 is live as of, September 4th. It concluded on September 11th. For DF round 154, Predictoor DF had 3,750 OCEAN rewards and 20,000 ROSE rewards.

2. DF structure

The reward structure for DF154 is comprised solely of Predictoor DF rewards.

Predictoor DF: Actively predict crypto prices by submitting a price prediction and staking OCEAN to slash competitors and earn.

3. How to Earn Rewards, and Claim Them

Predictoor DF: To earn: submit accurate predictions via Predictoor Bots and stake OCEAN to slash incorrect Predictoors. To claim OCEAN rewards: run the Predictoor $OCEAN payout script, linked from Predictoor DF user guide in Ocean docs. To claim ROSE rewards: see instructions in Predictoor DF user guide in Ocean docs.

4. Specific Parameters for DF154

Budget. Predictoor DF: 3.75K OCEAN + 20K ROSE

Networks. Predictoor DF applies to activity on Oasis Sapphire. Here is more information about Ocean deployments to networks.

Predictoor DF rewards are calculated as follows:

First, DF Buyer agent purchases Predictoor feeds using OCEAN throughout the week to evenly distribute these rewards. Then, ROSE is distributed at the end of the week to active Predictoors that have been claiming their rewards.

Expect further evolution in DF: adding new streams and budget adjustments among streams.

Updates are always announced at the beginning of a round, if not sooner.

About Ocean, DF and ASI Predictoor

Ocean Protocol was founded to level the playing field for AI and data. Ocean tools enable people to privately & securely publish, exchange, and consume data. Follow Ocean on Twitter or TG, and chat in Discord. Ocean is part of the Artificial Superintelligence Alliance.

In Predictoor, people run AI-powered prediction bots or trading bots on crypto price feeds to earn $. Follow Predictoor on Twitter.

Service Resumes — DF153 Completes and DF154 Launches was originally published in Ocean Protocol on Medium, where people are continuing the conversation by highlighting and responding to this story.

Nonprofits are under growing pressure to vet grantees, partners, and donors to meet global AML standards. This article outlines key KYC and KYB expectations in the U.S., UK, EU, Canada, and Australia – and shows how iComply enables automated risk screening without disrupting trust or operations.

Nonprofits and non-governmental organizations (NGOs) are mission-driven – but increasingly, they’re also AML-obligated. Regulators, donors, and banking partners now expect them to verify counterparties, conduct due diligence on sub-recipients, and track risk exposure across jurisdictions.

Global AML rules are expanding—and nonprofits must ensure their programs and funds are not diverted for criminal or terrorist use.

Emerging AML Obligations for Nonprofits United States Regulators: FinCEN, IRS, Department of State Requirements: Due diligence on foreign grantees, donor vetting, sanctions screening, and enhanced scrutiny of transactions involving high-risk countries United Kingdom Regulators: Charity Commission, HMRC Requirements: Financial controls, PEP and sanctions screening, and governance reviews for organizations handling overseas grants European Union Regulators: National charity bodies, AML authorities Requirements: UBO transparency, transaction monitoring, GDPR-compliant due diligence, and STR obligations Canada Regulator: CRA, FINTRAC Requirements: Anti-terrorist financing controls, donor due diligence, reporting obligations, and foreign activity reviews Australia Regulator: ACNC, AUSTRAC Requirements: AML/CTF compliance for overseas programs, sanctions compliance, and source-of-funds transparency Challenges Nonprofits Face

1. Resource Constraints
Small compliance teams, tight budgets, and limited infrastructure

2. Complex Grant Networks
Sub-grantees, international affiliates, and in-country partners with limited transparency

3. Donor Sensitivity
Trust and confidentiality must be preserved during verification

4. High-Risk Regions
Operations often focus on areas with elevated AML or sanctions risk

iComply: Mission-Aligned AML Tools for Nonprofits

iComply offers a lightweight, privacy-respecting AML platform that supports risk screening and verification across the nonprofit ecosystem.

1. KYC + KYB for Partners and Grantees Verify local nonprofits, vendors, and individuals with document and registry checks Onboard stakeholders using multilingual, mobile-ready portals Collect declarations, signatures, and supporting documentation securely 2. Sanctions and Risk Screening Screen partners and donors against OFAC, EU, UN, and national sanctions lists Apply configurable thresholds and refresh cycles Automate PEP/adverse media checks without storing unnecessary PII 3. Privacy-First Infrastructure Data processed on-device before transmission Full compliance with PIPEDA, GDPR, and local privacy laws Configurable consent workflows and retention schedules 4. Case Management and Reporting Assign compliance reviews and track escalations Export audit logs for internal governance or third-party funders Maintain a defensible trail of due diligence Case Insight: Charitable Gifting Platform

A Canadian-registered charitable gifting platform operating across North America adopted iComply to manage grantee and partner due diligence. Results:

Screened 60+ partners in under 4 weeks Flagged one entity with prior sanction exposure Increased trust with a major foundation through automated compliance The Bottom Line

Doing good doesn’t exempt you from doing due diligence. Nonprofits that integrate smart, mission-aligned compliance tools can:

Meet funder and regulatory expectations Maintain operational focus Build donor and partner trust

Talk to iComply to learn how we help nonprofits automate global AML screening – without sacrificing impact or transparency.

Crypto exchanges are no longer content with just being marketplaces. Increasingly, they are launching their own networks. On the surface, this appears to be a bid to reduce costs or capture transaction fees. But the real agenda is bigger: to become the gateway.

The Strategic Position of Exchanges

Exchanges already sit at the most valuable chokepoints in crypto:

They own the user funnels. They aggregate liquidity. They provide fiat on/off ramps. They hold the keys to KYC and AML compliance, giving them regulatory leverage and privileged access to the intersection of traditional finance and crypto.

By creating their own blockchains, exchanges extend this power. They no longer just host trading. They design the rails on which trading, applications, and interactions take place. In doing so, they secure the single sign-on (SSO) layer for Web3 and dApps.

A Familiar Playbook: Enterprises and Stablecoins

This strategy mirrors what is happening in traditional finance. Top enterprises and financial institutions are increasingly launching their own stablecoins, not because they want to compete with Bitcoin or Ethereum directly, but because they see stablecoins as the gateway to the digital financial system. Whoever owns the stablecoin rails owns the access point to payments, settlements, and capital flows.

In both cases — exchanges with blockchains and enterprises with stablecoins — the logic is the same: secure the gateway, and you secure the market.

Lessons from the Internet

We’ve seen this dynamic before. In the early days of the web, Facebook dominated single sign-on (SSO) by making “Login with Facebook” the default across apps and websites. Today, that role has largely shifted to Google, which owns identity and access at internet scale.

Exchanges are now attempting to replicate this playbook for Web3. By pushing users and developers onto their own chains, they position themselves as the default login layer of the crypto economy. Meanwhile, enterprises aim to achieve the same goal in finance through stablecoins, thereby creating a default settlement layer for the digital economy.

The Bigger Picture

What looks like fragmented innovation is in fact the same strategic move: to own the gateway layer of the future.

Exchanges are building a crypto SSO for decentralized apps.
Enterprises are building a financial SSO for digital payments.

Both are racing to become the indispensable entry point to their respective domains.

And yet, there is a third frontier emerging: the gateway for AI-native infrastructure. That story belongs to HPP, and it’s one we’ll explore in the next article.

BC 101 #6: Why Exchanges Are Building Their Own Blockchains was originally published in Aergo (HPP) on Medium, where people are continuing the conversation by highlighting and responding to this story.

See when and how AI chatbots use your content. With Fastly and ScalePost, publishers finally gain visibility into how their work shows up in AI-generated answers.

Today, Indicio welcomes Credence Nigeria as the latest organization to join the Indicio Network as a global Node Operator.

Credence Networks Inc is a Canadian-Nigerian based technology company that builds foundational infrastructure for digital trust ecosystems. Their platform enables governments and businesses to build trust in digital platforms that fosters the emerging digital economy. This collaboration grows the global footprint of the Indicio Network–hosted across seven continents and 11 countries. Both organizations are committed to working together to create the systems and technologies that will accelerate the adoption of decentralized identity and Verifiable Credentials.

As a Node Operator Credence joins the ecosystem of companies and institutions operating on the Indico Network, a decentralized network where organizations build and deploy trusted digital identity solutions. Indicio powers three professionally managed networks the TestNet, DemoNet, and MainNet. The TestNet and DemoNet are free to use as part of our Public Benefit community offering. The MainNet is an enterprise-grade, identity network designed for the exchange of Verifiable Credentials and the creation of decentralized identity services at scale.

“We’re delighted to welcome Credence Networks as a Node Operator,” said Heather Dahl, CEO of Indicio. “They’re commitment to transforming manual, costly, and fraud-prone credential verification into instant and secure digital processes is a mission we are aligned on. We look forward to growing the network together and continuing to provide companies the opportunity to launch and scale decentralized identity solutions.”

Engr. Malik Itopa Sule, co-founder of Credence Networks, explained that this partnership establishes the groundwork for the portability of Nigerian-issued credentials, enabling them to be verified internationally.

Indicio’s community of network partners are deploying real-world solutions that prioritize interoperability, user agency, and security. Join the Indicio Network as a Node Operator and Transaction Endoser today by completing this form or by talking with our team today.

Visit credence.com.ng or contact us at info@credenc.com.ng to learn more about Credence Networks Inc.

The post Credence Nigeria joins the Indicio Network as a global Node Operator appeared first on Indicio.

The UAE’s crypto story has often been framed as a race to innovate. But Q3 2025 marks a turning point: regulators aren’t just experimenting anymore — they’re enforcing. Across Dubai, Abu Dhabi, and the mainland, five authorities pushed new rules that will reshape how stablecoins, tokenized assets, and payment tokens operate in one of the world’s most ambitious digital-asset hubs.

Stablecoins and RWAs Step Into the Spotlight

Dubai’s VARA made its Virtual Asset Issuance Rulebook effective this June, locking in disclosure duties, reserve requirements, and full licensing for fiat-referenced (FRVA) and asset-referenced (ARVA) tokens. Translation? If you want to issue a stablecoin or tokenize real-world assets in Dubai, you’re now playing by institutional-grade rules — and VARA is already testing the waters with enforcement.

Securities Meet Sukuk on Chain

The SCA introduced a new framework for Security and Commodity Tokens, bringing digital contracts under existing securities law. At the same time, it consulted on tokenized sukuk, hinting at a future where Islamic finance and blockchain converge. If realised, that could be a global first — making sukuk more accessible and liquid through fractionalisation.

ADGM: Innovation With Guardrails

In Abu Dhabi, the FSRA updated its digital-asset guidance, streamlined approvals, and drew a hard line against privacy coins and algorithmic stablecoins. It also opened consultation on fiat-referenced tokens — expanding oversight to custody, payments, and intermediation. The message is clear: ADGM wants to attract serious players, but only those willing to play inside the guardrails.

Payments Tighten Under the Central Bank

The CBUAE officially ended its transition period for Payment Token Services. From now on, general retail payments onshore can only be made with licensed, dirham-pegged stablecoins. For merchants and PSPs, that narrows the rails to CBUAE-approved tokens — a major nudge toward a domestic stablecoin ecosystem.

Real Estate Goes On-Chain — And Sells Out

Perhaps the most headline-grabbing news came from the Dubai Land Department (DLD). Its property-title tokenization pilots sold out instantly, drawing hundreds of investors from dozens of countries. With the launch of the DIFC PropTech Hub, the UAE is building a sandbox-to-scale pipeline for tokenized real estate. In a country where property is king, this is a glimpse of the future.

The Quiet Challenge: Data & the Travel Rule

Behind all these flashy pilots and frameworks lies a less visible, but equally crucial shift: compliance with the FATF Travel Rule. VASPs must now share user data across borders, creating new privacy risks and operational headaches. This is where tools like Shyft Veriscope come in — offering a frictionless, peer-to-peer way to comply without parking sensitive data in centralised databases. For firms in the UAE, that could be the difference between regulatory success and privacy failure.

Why This Quarter Matters

The UAE is moving from regulatory ambition to execution. Stablecoins are regulated, tokenized assets have clear pathways, and payments are narrowing to licensed rails. At the same time, real estate tokenization is proving there’s real demand beyond theory.

For founders, issuers, and investors, the signal is clear: the UAE isn’t just a crypto playground anymore — it’s becoming a serious, rules-based market. Those who embrace compliance as part of their strategy, rather than a burden, will be best placed to ride the next wave of growth.

About Veriscope

‍Veriscope, the compliance infrastructure on Shyft Network, empowers Virtual Asset Service Providers (VASPs) with the only frictionless solution for complying with the FATF Travel Rule. Enhanced by User Signing, it enables VASPs to directly request cryptographic proof from users’ non-custodial wallets, streamlining the compliance process.

For more information, visit our website and contact our team for a discussion. To keep up-to-date on all things crypto regulations, sign up for our newsletter and follow us on X (Formerly Twitter), LinkedIn, Telegram, and Medium.

Book your consultation: https://calendly.com/tomas-shyft or email: bd@shyft.network

UAE Crypto Regulation: From Experiments to Enforcement was originally published in Shyft Network on Medium, where people are continuing the conversation by highlighting and responding to this story.

New data laws aimed at making life easier for people within the UK are now in force.

The Data (Use and Access) Act received Royal Assent following a number of setbacks in the House of Lords as Peers claimed parts of the Bill would leave the UK vulnerable to AI copyright breaches.

The post UK’s Data Act now in force – aims to establish new investment regime appeared first on Veracity Trust Network.

The 2025 Gartner® Magic Quadrant for Identity Verification report offers compelling insights and underscores a critical reality: identity verification sits at the core of cybersecurity. This annual report—departing from the usual bi-annual cycle—highlights the escalating threat of identity-based attacks and the rapid technological evolution needed to counter them.

The report emphasizes growing concerns about identity fraud in critical business operations. In logistics and transportation, for example, false identity credentials create significant operational and liability risks. When unverified, untrained, or uninsured individuals operate commercial vehicles, companies face regulatory violations, safety incidents, and supply chain disruptions.

Recent headlines about Scattered Spider social engineering attacks and an FBI warning about North Korean operatives targeting American businesses through hiring fraud illuminate the current threat landscape. These incidents demonstrate that traditional identity verification processes are failing under modern attack methods.

Our Journey to Leader in Workforce Identity in One Year

Last year, 1Kosmos was selected from numerous competitors to join the Magic Quadrant alongside a handful of other vendors. Twelve months later—after tripling our annual recurring revenue (ARR) and securing $57 million in venture backing—we’ve emerged as the sole solution provider in the Challenger quadrant.

More significantly, 1Kosmos ranked Highest for Workforce Use Cases in the 2025 Gartner® Critical Capabilities for Identity Verification report. This recognition validates our core principle: securing the person, not just the credential, forms the foundation of modern enterprise security.

What Sets 1Kosmos Apart: The Trifecta of Trust

Gartner’s analysis highlighted three core strengths that differentiate 1Kosmos:

1. FedRAMP High Authorization

The 1Kosmos platform has achieved FedRAMP High Authorization —the highest security compliance level under the Federal Risk and Authorization Management Program. 1Kosmos is the only vendor holding this authorization while also being a Kantara-certified full-service Credential Service Provider (CSP). Since we offer the same platform to commercial customers, these organizations benefit from an identity verification solution that has passed rigorous testing against over 420 separate security controls.

2. Comprehensive Integration Ecosystem

While many identity verification vendors struggle with basic workforce integrations, 1Kosmos provides deep, prebuilt connectors across the identity and access management stack. We integrate seamlessly with Active Directory, Ping, CyberArk, Okta, Microsoft Entra ID, and emerging tools for recruitment and IT service management.

3. Advanced Biometric Authentication

Our extensive face biometrics experience extends beyond one-time verification. We enable continuous, adaptive authentication that detects and responds to threats in real-time, creating a persistent security layer that evolves with your risk profile. No other vendor offers this comprehensive support for both identity verification and a reusable identity wallet for biometric authentication.

Innovation That Drives Results

Our privacy-by-design architecture represents more than marketing messaging—it’s a fundamental architectural advantage. By combining identity verification, passwordless authentication, and a distributed ledger for user-managed privacy, we’ve created a platform that rapidly adapts to new threats and requirements.

This approach recently earned recognition from KuppingerCole, who ranked 1Kosmos highest in innovation among identity verification vendors in their 2025 Leadership Compass for Identity Verification report. When two leading analyst firms independently validate your technical approach, it signals you’re solving problems correctly.

The results demonstrate our platform’s effectiveness: customers have reduced identity fraud by more than 40% within six months of deployment, while our global platform processes over one billion daily authentications for 75+ million users.

Solving Real Business Problems

The 1Kosmos platform defends against stolen and fake identities daily at some of the world’s largest organizations, whether addressing in-person or online identity fraud.

We protect major retailers from identity fraud at point-of-sale and equipment rental locations. We secure logins for one of the largest global business process outsourcing firms and support one of the world’s largest FIDO2 deployments.

Our solutions protect healthcare workers and secure patient information for medical service providers, while enabling workforce logins at major financial services firms worldwide.

The 1Kosmos Difference: Complete Digital Identity

Combining identity verification, passwordless authentication, and user-controlled privacy in a single platform that supports both customers and workers delivers concrete business value.

This approach provides more than enhanced security against hiring fraud and social engineering attacks on IT service desks—it improves user experience. When employees can securely access all work applications through a single, verified digital identity, productivity increases while security risk decreases.

We’re the only company providing users with a digital identity wallet they control, enabling convenient and secure access to enterprise applications like Microsoft, Saviynt, ServiceNow, and Epic.

For privileged access management, our platform ensures that access to mission-critical systems remains tied to verified, identity-backed biometrics.

Speed of Deployment, Strength of Security

For enterprise decision-makers, 1Kosmos delivers these capabilities through rapidly deployable cloud services. While point solutions can require weeks or months to implement, our platform typically deploys in hours to days. In a threat environment where speed matters, this deployment advantage can mean the difference between preventing an attack and becoming a headline.

Looking Forward

Gartner’s recognition validates our approach while reinforcing our responsibility to continue pushing boundaries and exploring new possibilities in identity security. As threats evolve, our defenses must evolve accordingly. The criminals behind Scattered Spider and similar operations are sophisticated and well-funded—our response must be equally sophisticated and agile.

We’re building more than improved identity verification; we’re constructing the foundation for a more secure digital economy where trust is verifiable, privacy is preserved, and organizations can confidently embrace digital transformation without compromising security or convenience.

The future of enterprise security begins with identity. And identity security starts with verified trust.

The post 1Kosmos Takes the Lead in Workforce Identity Verification appeared first on 1Kosmos.

The post The Convergence of Authentication and Fraud Prevention appeared first on Liminal.co.

Gemeenten willen verduurzaming versnellen. Dat lukt alleen als bewoners ook echt meedoen, juist díe mensen die het moeilijk kunnen betalen. Het Nationaal Isolatieprogramma stelt middelen beschikbaar, maar de praktijk laat zien dat die subsidies vaak terechtkomen bij huishoudens die het eigenlijk zonder hulp ook wel redden.

Are you ready for the future of Gaming? Prepared for the industry’s upcoming fraud and compliance challenges? IDnow’s identity verification experts will be on hand to answer all your IDV-related questions at Booth E405. 

We will be attending SBC Summit in Lisbon from September 16-18 to share actionable insights on how to onboard players in seconds, remain compliant throughout Europe, and block fraud before it impacts the customer experience.  

As one of the first companies in Europe to receive certification under the latest ETSI standard for remote identity proofing (a key requirement for eIDAS 2.0 and EUDI Wallet compliance), IDnow is well equipped to assess how prepared and future-ready businesses are for upcoming regulatory challenges. The team can be found at Booth E405 in Hall 4 and will be demonstrating how its wide range of automated and expert-led identity verification solutions can unlock safer and more secure gaming experiences. 

Gaming operators are also invited to swing by to check out some of IDnow’s latest product developments, from its expanded fraud prevention technology to its NFC-enabled offering, which provides a seamless and streamlined experience, from document tap to trusted onboarding. 

At midday on September 18, don’t forget to head over to Stage 3 – Technology & Compliance to attend the ‘AML 2.0: Getting Serious about Fraud’ panel.

This will be a great opportunity to hear from Edouard Baussier, Solution Sales Director at IDnow, who, alongside other industry leaders and insiders, will explore how AI, real-time data, and regulations are transforming AML efforts. 

Traditional AML strategies are often too rule-based and reactive; focusing more on catching yesterday’s fraud than tomorrow’s. I look forward to joining my peers from the gaming and gambling space to explore how AI, data enrichment and behavioral analytics could be used to shape the future of AML.

Edouard Baussier, Solution Sales Director at IDnow

Hoping for the treble. 

IDnow will also be hoping history repeats itself at this year’s SBC Awards (taking place on the final day of SBC Summit Lisbon on September 18,) as it has once again been nominated for the ‘Fraud and Compliance Solution of the Year’ award. 

Having won the award in both 2023 and 2024, the Munich-headquartered identity verification platform provider will be hoping to win the prestigious award for three years in a row. 

Schedule a meeting with the IDnow team at SBC Summit by clicking below.

By

Jody Houton
Senior Content Manager at IDnow
Connect with Jody on LinkedIn

SBC Summit Lisbon Schedule a meeting with the team to discover how IDnow’s range of automated and expert-led solutions can help you unlock safer and more secure gaming and gabling experiences. Book a meeting

We sat down with Viky Manaila (Trust Services Director at Intesi Group) and Vedran Lalic (Digital Identity Consultant at the World Bank) to break down a massive topic: 

By 2026, eIDAS 2.0 will change how digital identity works in Europe. 

The shift to verifiable credentials and digital wallets isn’t optional, it’s happening. 

Governments, businesses, and institutions that adapt early will gain a competitive advantage. Those who don’t? They’ll be scrambling to keep up.

So, what should you be doing right now to get ahead? Let’s break it down.

From opening a bank account to approving a mortgage or executing a cross-border payment, trust in a person’s digital identity is what keeps the financial system running smoothly. But in Europe, the digital identity landscape has long been fragmented with each country relying on its own tools, trust schemes, and identity providers. For financial services providers operating across borders, that means rising compliance costs, customer friction, and missed growth opportunities. The EU’s eIDAS 2.0 regulation is about to change all that, and for banks, insurers, and fintechs, the implications are massive.

At Bluesky, we’re working to drive large-scale adoption of technologies for open and decentralized public conversation. We built our app to provide you with better choices when it comes to privacy, expression, and safety. That’s why we give people options for how content moderation works, on top of our baseline policies.

We recognize that promoting safety for young people is a shared responsibility, and we support the idea of collective action to protect children from online risks. We also recognize that governments may have strong, often conflicting, views on these issues and how to weigh competing priorities. In this rapidly evolving regulatory environment, our goal is to respect the law while balancing safety, free expression, and user privacy to serve the greater good of our community. Responding to new laws and regulations will require pragmatism and flexibility.

In the UK, we complied with a new law that requires platforms to restrict children from accessing adult content. In Mississippi, the law requires us to restrict access to the site for every unverified user. To implement this change, we would have had to invest substantial resources in a solution that we believe limits free speech and disproportionately harms smaller platforms. We chose not to offer our service there at this time while legal challenges continue.

South Dakota and Wyoming have also passed online safety laws that impose requirements on services like ours. These are very similar to the requirements of the UK Online Safety Act. So, as we did in the UK, we’ll enable Kids Web Services’ (KWS) age verification solution for users in these states. Through KWS, Bluesky users in South Dakota and Wyoming can choose from multiple methods to verify their age. We believe this approach currently strikes the right balance. Bluesky will remain available to users in these states, and we will not need to restrict the app for everyone.

We’re committed to keeping our community informed as we navigate these new regulations. As more states and countries adopt similar requirements, we will update this blog post accordingly.

Update, September 26: Ohio has a law similar to South Dakota and Wyoming regulations, so we'll be implementing the same solution in Ohio, effective September 29th.

August 2025 DDoS attack trends: Hyperscale clouds are the source for 70% of attacks. Get insights on the latest application DDoS trends to strengthen security.

AI crawlers are scraping the web, often ignoring rules and costing publishers resources. The new RSL Standard lets you block, allow, or even charge AI for access to your content. Here’s how it works.

With leading research company Juniper predicting a “fraud tidal wave,” Indicio’s authenticated biometric credential solution is a simple, powerful, cost effective defense against synthetic identity fraud and deepfakes while also streamlining account access, mobile, and cross-border payments.

By Tim Spring

Juniper Research predicts fraud will cost financial institutions $58.3 billion dollars, globally, by 2030 — and the bill is coming from synthetic identity fraud, where real, stolen, and fake information is combined to trick institutions into opening accounts and granting credit.

Add this to bots, phishing attacks, account takeovers, and AI being used to accelerate attacks, and generate deepfakes.

Meanwhile, the demand for seamless, fast, mobile banking and payments has only increased. Juniper also forecasts that mobile payments will grow to over $8 trillion dollars by 2028.

Money 20/20 — Indicio is “poised to transform the world of money”

We’re doing this with authenticated biometric credentials, a simple, cost-effective solution to these authentication and KYC problems that can scale from the smallest SME to the corporations and countries.

With Indicio Proven software, any government issued identity document containing an image can be bound to the person who rightfully owns it — through a combination of face-mapping and liveness checking. And through our partnership with Regula, thousands of official identity documents from all over the world can be validated as authentic.

The result is a Verifiable Credential that contains an authenticated biometric — a combination of personal identity data and a biometric image that can be presented anywhere for instant verification — no centralized storage of personal or biometric data needed.

What makes this so powerful is that the issuer of the credential — a bank, a brokerage, a financial institution — can be cryptographically proven, along with the integrity of the data.

And this authentication takes place before any data is shared.

So if you trust the bank, you can trust the information in the credential — plus, you can automatically compare a live image of the person with a tamper-proof copy of their biometrics, a simple way to identify deepfakes.

The result is the most powerful digital identity in the global marketplace — one that can be created in minutes and verified with simple mobile software anywhere.

Bonus — with Indicio Proven, your authenticated biometric credential is globally interoperable, meaning it can work with the European Union’s new Digital Identity Wallet.

Indicio — the IDV disruptors

We first created this solution to enable seamless border crossing with the world’s first digital passport credential based on international standards. We won awards. But more importantly, we saw how this could transform identity verification for everyone and meet the emerging challenges of synthetic identity fraud.

Our software enables anyone to hold an authenticated biometric of themselves and instantly share it anywhere as the ultimate proof of identity in a world of fakery. And we also make it easy to verify anywhere, even offline.

It’s simple to implement — it will work with your existing systems. It’s simple to use — generate or scan a QR code; integrate with existing biometric infrastructure. And it is significantly less expensive than traditional IDV — but you’ll have to contact us to find out by how much.

The question is, in a world where synthetic identities and deepfakes threaten the financial security of your company, can you afford not to ask for a Proven biometric?

Getting Started

To get a better understanding of the technologies involved, you can visit our banking and finance page. To discuss specifics or learn how you can start integrating this solution into your systems today, please contact our team and we will be happy to answer any questions or set up a time for a free consultation.

###

The post Indicio’s authenticated biometrics — a simple defense against a “tidal wave” of synthetic identity fraud appeared first on Indicio.