By now most identity professionals have heard that passwordless authentication is the future. Turning that knowledge into well thought out policy decisions that are right for your organization can be daunting, however. Some of the main questions like whether to require device bound credentials or synced/syncable credentials seem simple at first glance, but are they really? This session is Inspired by my own experience ramping up from 100-level to 300/400-level on the passwordless space and subsequently working on driving interoperability between Microsoft and other passwordless vendors. I will try to clarify some of the main points of confusion observed across a number of passwordless vendors regarding topics like device bound vs synced credentials, attestation, and FIDO Alliance certification. Whether you are an IT Professional managing identity for an organization or an engineer at a software or hardware company looking to implement passwordless technology into your product (or it IS your product!), the goal of this session is to empower people to make educated policy or product decisions with a clearer understanding of what these terms mean.