As digital interactions become more complex, personal identity is at the center of security, privacy, and trust. Traditional identity models often fail to balance security with user autonomy, leading to over-reliance on centralized data, privacy risks, and friction in digital experiences. This workshop explores the evolution of personal identity, focusing on standards surrounding mdocs and verifiable credentials,  decentralized identity, as well as self-sovereign identity (SSI). Attendees will learn how to navigate the shift toward user-controlled identity models while ensuring compliance, security, and interoperability in a rapidly evolving landscape.

• The history of the ISO and W3C standards, including its differences and similarities.
• Why personal identity models need to evolve—limitations of centralized identity, risks of data over-collection, and challenges of static identity attributes.
• Benefits of mdocs, decentralized identity, self-sovereign identity (SSI), and verifiable credentials in enhancing security and privacy.
• Emerging standards and technologies shaping the future of personal identity (e.g., DID, Verifiable Credentials, OIDC4VP, ISO 18013-7).
• Current challenges and opportunities—what is feasible today, what organizations can prepare for, and what remains in development.
• How privileged access and authentication frameworks can leverage decentralized identity principles.
• Actionable recommendations for implementing user-centric identity models in security architectures.
• Potential use cases and interoperability between different vendors and technology standards.