John Kemp has worked for more than twenty-five years to help make the Internet more secure. As an editor of the SAML 2 specification, he contributed to our modern architecture for federated authentication and single-signon.  In addition to helping design and build identity and access management systems at Nokia, John is a recognised expert in cryptographic key management, having built large-scale key management systems at Nokia, and most recently at Bloomberg.  John is currently a member of the IETF WIMSE and PKIX Attestation working groups, helping define standards around workload identity and trustworthy attestation, in addition to helping companies improve their key management and security practices.