John Kemp has worked for more than twenty-five years to help make the Internet more secure. As an editor of the SAML 2 specification, he contributed to our modern architecture for federated authentication and single-signon.  In addition to helping design and build identity and access management systems at Nokia, John is a recognised expert in cryptographic key management systems. John is currently a member of the IETF WIMSE and PKIX Attestation working groups, helping define standards around workload identity and trustworthy attestation, in addition to helping companies improve their key management and security practices. He recently joined Capital One working on identity and access management.