Help Center
What is the Mesh?
The Mesh is the global "trust network" that interconnects all virtual and personal Trustees over the internet. Much like social networks, the Mesh enables digital interactions between people and organizations. But unlike traditional social networks, the Mesh does not target a specific application or mode of communication. Rather, it is designed from the ground up as a neutral platform to enable digital security, trust and privacy for everyone.
How do I join the mesh?
As an individual, just get the Mesh In Preview app from the Play Store or the App Store, and create your mesh identity. If you are an organization interested in joining the Mesh, please reach out to us at info@hushmesh.com.
How much does it cost to join the Mesh?
Enrolling and using the Mesh is free for individual members.
What is a Trustee?
A Trustee is a Trusted Computing agent that automates cryptographic identity, authentication and data security for its owner and assigned users. Trustees can juggle an unlimited number of unique cryptographic keys for each relationship between its users and participating online services. As a result, mesh members are completely relieved from the burden of managing passwords and other security measures currently required when authenticating online. Trustees work exclusively on behalf of the members entrusted to their care ensuring a high degree of security, trust and privacy for everyone on the Mesh.
What is the difference between a virtual and a personal Trustee?
Virtual Trustees are automatically assigned to mesh members from the moment they create an identity. Virtual Trustees can be cloud-based or hosted anywhere on the Mesh, but are physically remote from the members they serve. A personal Trustee, on the other hand, is an in-home, Trusted Computing device that acts as your personal service agent. Once your phone and personal Trustee are linked, your Trustee takes over the management of your cryptographic identity and keys, standing by in your home to help you recover should you lose your phone or need to reset your mesh passcode. Instead of calling a service desk and trying to convince them that "you are who your say your are", you can walk right up to your personal Trustee. Because you do not rely on any other human being, this in-person self-service interaction eliminates social engineering and insider threats on the Mesh. Your personal Trustee protects you from our own employees.
Where can I buy my own personal Trustee?
I just want to try it out. Do I need to buy a personal Trustee to see how it works?
No. To experience meshing in, simply download the Mesh In Preview app from either the Google Play store or the Apple store, install it on your smartphone, and follow the prompts to enroll as a member. While we strongly encourage everyone to have their own personal Trustee, you can get started without one. You will be assigned a virtual Trustee on the Mesh when you enroll. While you will get many of the same benefits that the Mesh offers, you will not enjoy the ultimate security and convenience that having a personal Trustee can provide.
Why do I need a personal Trustee? Can't something like this be done on my phone?
Any security system is only as strong as its weakest link. And when humans are involved, recovery is ALWAYS that weakest link. So the real question is: how can I recover if I lose my phone? If your phone holds your most secure credentials and you lose it, then you are toast! You have to argue with some remote stranger trying to convince them that you are the legitimate owner of your own identity! In these critical recovery moments, you appear no different than a hacker attempting to impersonate you. Using social engineering, hackers work to convince those same strangers that they are you so they can steal your identity. In contrast, on the Mesh, your personal Trustee is your agent! You just get a new phone and recover your identity from your Trustee, in person, completely on your own. There is no one to socially engineer, which is how the mesh eliminates identity theft and fraud.
Getting started with your Trustee
Your Trustee is a simple device that works on your behalf to authenticate you and seamlessly assert your identity to all your services. It doesn't require a lot of "care and feeding", but taking a few easy steps now will allow it to continue working for you uninterrupted. 1. Setup your Trustee in your own home. Even if you received your personal Trustee from your employer, it is intended to support you across all your services. 2. Plug in your Trustee as close to your Wi-Fi router as practically possible. It will maximize the strength of its connection, and minimize interferences from other appliances (such as microwave ovens). Place it where you can keep an eye on it. While you won't need to interact with it often, it will let you know when your attention is needed. 3. Once plugged in, you will need to configure your Trustee to connect to Wi-Fi. Download and install the Mesh In Preview app to become a member. At the end of enrollment, select "Link with my Trustee" and follow the instructions to get your Trustee online. If you are already a member, tap the "Link Now" link on the Mesh In Preview app homescreen to connect your Trustee to WiFi and link your phone with it. (watch video here)
Choosing a wifi network to connect your personal Trustee
Your personal Trustee is designed to connect to 2.4 GHz Wi-Fi networks. When prompted, to enter the network name and password in the Mesh In app, make sure to enter the name of a 2.4 GHz network only. Most routers support multiple frequency bands (2.4 and 5 GHz). Be aware that the network name and password may be different for the different bands. Also, make sure your Trustee is plugged in where you know the Wi-Fi signal is strong. For the best experience on the mesh, it is important that your Trustee maintain a strong connection to the Mesh at all times.
What does it mean to mesh in?
The "mesh in" experience is an easy, secure and password-free alternative to the antiquated "login" process. When you mesh in, you establish a secure connection between your personal Trustee and the website, app, device or physical location you are meshing in to. It eliminates the need for usernames and passwords, as your Trustee knows who you are and can negotiate access on your behalf, securely and automatically.
How do I mesh in?
To mesh in, click the "mesh in" button on a website or app. Instead of being asked for a username and password, you will be prompted to scan a "meshtag", i.e. a QR code. Snap the meshtag with the Mesh In app, and the website or app will let you in automatically.
Where can I mesh in?
You can only mesh in on websites and apps that offer the option to do so. Just like every network, the number of participants starts small before growing bigger. Hushsafe is a first sample application where you can mesh in to experience the convenience and security of the Mesh. We will update a list of participating organizations on this website as the Mesh network grows. Please check back often.
Why do I need to enter my passcode when I mesh in?
If you do not have a personal Trustee, the mesh links your phone to a virtual one automatically. To authenticate to that virtual Trustee, you must enter your passcode at least once a day. Once you link your phone with your own personal Trustee, you will be asked once a week to enter your passcode
It seems magical. What actually happens when I mesh in?
When you click the mesh in button on a website, the Mesh generates and displays a unique meshtag for that site and session. When you snap the meshtag with the Mesh In app on your phone, the app sends it to your Trustee. And because your Trustee manages your keys, it can uniquely retrieve your identity and any other data that you wish to send to the site. Your Trustee can then send the information to the site in the form of tokens. To see what tokens look like, try out our Mesh Token Viewer app.
Can I mesh in using two different phones?
At this time, the Mesh requires that your mesh identity be linked to a single phone. It's easy to move your identity to another phone, 1) you must know your passcode and 2) you must either have physical access to your personal Trustee or to the recovery code we emailed you when you enrolled. For convenience, we recommend that you keep your personal Trustee at home, and your recovery code in your wallet so that you will be prepared should you need to move your identity to a new phone.
Can I mesh in without my phone?
At this time, you must use a phone to mesh in. We will enable alternate phone-less methods at a later date.
What does mean for a service or website to be in “Preview”
When meshing in you may see a warning that states “This service is in Preview. Mesh in at your own risk.” What this means is that the website or app that you are meshing in to is still in a development or testing state and has not been fully certified. Do not enter sensitive or irreplaceable data in any app or website you are meshing in to that displays this warning.
How does the mesh ensure the security of my data?
Your data is encrypted with keys that are exclusively managed by your virtual or personal Trustee. All Trustees are trusted computing agents that are running verified software in a protected environment. With the exception of the minimum information we need to make the mesh accessible to you, our central service only stores encrypted data. Our central service does not have access to any of the keys to decrypt your data. Each Trustee has its own primary key that is used to encrypt all your personal keys, so that they too can be stored encrypted. Finally, Trustees work together to backup other Trustees's primary keys. In the end, no key is ever exposed in the clear outside of the trusted computing environment of the Trustees (and the legitimate services that need them.)
Do I need to secure my phone?
The Mesh In Preview app will require you to have some form of phone security turned on (PIN, Pattern, fingerprint, FaceID, TouchID...). Whenever you mesh in, the Mesh In Preview app will challenge you to verify that you are the owner of the phone.
What happens if I lose my phone? Can someone get access to all my stuff?
Treat your phone as your most guarded possession. Make sure you secure it with a PIN, a pattern, TouchID or FaceID. If you have not taken this step, the Mesh In app will require you to set it up before you can enroll as a member. Even better, it's really easy to migrate your mesh identity to a new phone by using your passcode and linking your new phone to your personal Trustee (or using your recovery code). Once you have linked your new phone, the Mesh In app on the lost phone is automatically "revoked" by your Trustee, rendering the phone useless for anyone trying to mesh in as you.
What prevents a service provider from storing my decrypted key or decrypted data?
There is nothing the Mesh can do to prevent a service provider from storing the data you make available to them. However, the Mesh does offer a secure and convenient alternative for services to use. By relying on the Mesh to secure their users' personal data, organizations increase the security of their services, while reducing their costs and overall liability.
What if someone steals or tampers with my personal Trustee? Will my identity be at risk?
No. Your personal Trustee manages your identity, but does not actually store it when not in use. Someone would have to break into your house, steal your Trustee, steal your phone, and know your device security to take over control of your identity. The Mesh will know when your Trustee is no longer online (for whatever reason). Coming soon you will receive notification when your Trustee goes offline and you can take steps to "revoke" the Trustee if you believe its been stole. You will also be able to stop the attack by enlisting someone else on the Mesh (your spouse, friend, colleague...) to help you lock down your identity. That makes such attacks close to impossible in practice, and certainly orders of magnitude more secure than today's current state of the internet.
Does the Mesh help me protect my privacy?
Information you accumulate under your mesh identity, that describes who you are and who you interact with, is your very own personal data. You control who can view and have access to it. To learn more about the privacy of your personal data while using our services during the Preview phase, please see our Terms of Service & Privacy Policy.
Sharing your personal data
A primary objective of the Mesh is to provide you with control over your personal data, and transparency for when it is being shared with another person or organization. When meshing in, you may be asked to share attributes of your identity (your name, email address, phone number, etc) with the service, app or website you are trying to access. The Mesh facilitates this request for information from the service provider by showing you a consent screen that asks your permission to share this data with them. You can choose to deny these permissions. As this data is often used to enhance or deliver the requested services, the service provider may choose to deny access or limit the scope of the services they provide to you if you do not consent to share your data with them. This is fully controlled by the service provider. Reference the service provider's Terms of Service and Privacy Policy for more information.
What is a mesh identity?
When you enroll as a member of the Mesh, we like to say you create "your identity for life." During the enrollment process, you tell your assigned virtual Trustee some things about yourself (your phone number and your email address) and you choose a name for yourself on the Mesh. We refer to these elements as "attributes" and together they form your identity on the Mesh. As you continue to use the Mesh, you will add and accumulate more attributes about yourself. By having all the data about yourself in one secure place, you can more conveniently manage any changes, see who has access to your data, and decide who you want to share it with.
Where can I find information about my mesh identity?
For the time being, the Mesh In app is where you can see the attributes that your Trustee is maintaining for you. Go to the "About Me" section under the app menu to view and manage your profile attributes.
Verifying your phone number
When you enroll on the Mesh, you are required to verify that you are in control of the phone number you are using for the enrollment. To do this, we send you an SMS message with a code that you will be asked to enter in the app. If you don't receive the text right away, be patient, it can take a minute or so. If you still don't receive it, you can request a new message to be sent by tapping "Send Again" in the app.
Choosing a preferred name for the Mesh
During enrollment, the Mesh In app asks you what you would like to be called on the Mesh. This name is public and will be used as a friendly way to refer to you. It's not a username so you can change it whenever and as often as you want.
Claiming an email address on the Mesh
Email addresses are unique identifiers that the Mesh can use to associate you with your online accounts. Often you even use an email address in place of a username when you login to online services. "Claiming" an email address is proving to your Trustee that you own that address by verifying that you have access to it. By doing so, you begin building a set of verified identifiers that become attributes of your identity on the Mesh. Whenever you mesh in, you may be asked to share some of these attributes to identity you with an account you may already have with the service provider or to establish a new account.
I didn't get an email to verify my email address.
It is possible that your email provider will not recognize verification emails from Mesh In as important. Sometimes, they may categorize them as promotional, or worse yet as junk email. If you don't see the verification email from us in your priority email list, check your other email folders and your spam folder. If you still can't find it, add no-reply@mesh.in to your email contacts list and tap "Send Again" in the Mesh In app to be sent a new verification email. To be sure you won't miss important service emails in the future, please add no-reply@mesh.in to your email contacts list regardless.
I no longer use the email address I enrolled with. Can I change it?
Yes! You can add additional email addresses or delete old email addresses that you no longer wish to use. Go to the "About Me" section under the app menu to view and manage your profile attributes.
Creating and using your passcode
You are required to create a 6-digit passcode when you create your identity on the Mesh. Your passcode is a shared secret that you use to identify yourself to your Trustee. If you do not have a personal Trustee, and hence have been assigned a remote virtual Trustee, you will be asked to enter your passcode at least once a day for authentication purposes. Once you have your own personal Trustee and have linked your phone with it, you will only be prompted to enter your Passcode once a week to make sure you remember it.
Note that your passcode is required when you are moving your identity to a new phone or when linking with a new personal Trustee. Because this is a secret shared ONLY between you and your Trustee, THERE IS NO CENTRAL SERVICE TO HELP YOU RESET IT. It's imperative that you commit your passcode to memory and keep it an absolute secret. Once you have linked your phone with your personal Trustee, you will be able to colorstream with your Trustee to reset it as needed.
If you did not link your phone with a personal Trustee and forget your passcode, your only recourse will be to wipe out your mesh identity and start again from scratch. You will lose all data that was associated with your existing mesh identity if you choose to restart with a new one.
Note that your passcode is required when you are moving your identity to a new phone or when linking with a new personal Trustee. Because this is a secret shared ONLY between you and your Trustee, THERE IS NO CENTRAL SERVICE TO HELP YOU RESET IT. It's imperative that you commit your passcode to memory and keep it an absolute secret. Once you have linked your phone with your personal Trustee, you will be able to colorstream with your Trustee to reset it as needed.
If you did not link your phone with a personal Trustee and forget your passcode, your only recourse will be to wipe out your mesh identity and start again from scratch. You will lose all data that was associated with your existing mesh identity if you choose to restart with a new one.
What does it mean to "link" my identity, my phone and my personal Trustee with one another?
When you enroll and create an identity on the Mesh, you are automatically assigned a virtual Trustee to manage it on your behalf. The enrollment process itself automatically links your phone with the virtual Trustee, and hence with your identity. Indeed, the Mesh In app silently registers your phone with the Trustee and your mesh passcode enables you to authenticate yourself to that Trustee where you can take control of your identity.
Getting your own personal Trustee brings you significant benefits. It give you physical control and exclusive access to it to manage critical events such passcode resets, migration to a new phone, replacement of a Trustee, and other transaction validations. This "physical access requirement" precludes remote attacks and makes managing your identity much more secure and convenient for you.
Linking your phone to your personal Trustee is the action that designates the physical device you received as your personal Trustee. Doing so automatically transfers the management of your identity from your formerly assigned virtual Trustee, to your newly linked personal Trustee. Because your personal Trustee is trustworthy by design, and cryptographically unique, all interactions with your personal Trustee on the Mesh instantly gain security and trustworthiness. Indeed, Trustees are specifically designed to be practically impossible to spoof, and extremely difficult to hack.
Getting your own personal Trustee brings you significant benefits. It give you physical control and exclusive access to it to manage critical events such passcode resets, migration to a new phone, replacement of a Trustee, and other transaction validations. This "physical access requirement" precludes remote attacks and makes managing your identity much more secure and convenient for you.
Linking your phone to your personal Trustee is the action that designates the physical device you received as your personal Trustee. Doing so automatically transfers the management of your identity from your formerly assigned virtual Trustee, to your newly linked personal Trustee. Because your personal Trustee is trustworthy by design, and cryptographically unique, all interactions with your personal Trustee on the Mesh instantly gain security and trustworthiness. Indeed, Trustees are specifically designed to be practically impossible to spoof, and extremely difficult to hack.
What does it mean to colorstream with a Trustee?
Colorstreaming is a fun, new way to send a message from your phone to your personal Trustee. Instead of Bluetooth or other radio method (which can have security issues), colorstreaming uses a sequence of color flashes on your phone screen. Your personal Trustee has a built-in color sensor on its front face to decode such "colorstreams".
To colorstream, simply place your phone screen flat against the front face of your personal Trustee when prompted by the app to do so. Keep it in this position until the colorstream is completed (usually less than 10 seconds). If your phone has vibrations turned on, you will feel it vibrate during the whole process. Once colorstreaming has completed, your personal Trustee will flash green if the colorstream was successfully received, or red if the transmission failed. If it failed, just try again. It may take a couple of tries before you get the hang of it.
To colorstream, simply place your phone screen flat against the front face of your personal Trustee when prompted by the app to do so. Keep it in this position until the colorstream is completed (usually less than 10 seconds). If your phone has vibrations turned on, you will feel it vibrate during the whole process. Once colorstreaming has completed, your personal Trustee will flash green if the colorstream was successfully received, or red if the transmission failed. If it failed, just try again. It may take a couple of tries before you get the hang of it.
Tips for Colorstreaming
The Mesh In app will alert you when you should prepare to colorstream with your Trustee. After selecting "Go" your app will begin to countdown. Place the SCREEN of your phone against the FACE of the Trustee before the countdown is completed. The phone will vibrate while colorstreaming is underway. Once colorstreaming is complete (vibration will cease), you can remove the phone from the face of the Trustee. Unless the message is really long, colorstreams usually do not last more than 10 seconds. If you were able to successfully colorstream the message, the Trustee will blink Green. If your Trustee did not receive the full message, it will blink Red alerting you to try again. When colorstreaming, it is important to place the screen of your phone directly against, and flush with the face of the Trustee. External bright light shining directly on the Trustee may interfere with its ability to properly receive and decode the colorstream. If you experience repeated failures when colorstreaming, and your Trustee is located in a place exposed to bright light, try blocking some of that bright light for the duration of the colorstream.
What happens if my power or the internet goes out where my Trustee is located?
Your Trustee is just one of many Trustees on the mesh. All these trustworthy devices work together behind the scenes to provide back-up and failover services to one another. So if your home loses power, internet connectivity or if your Trustee just stops working, another Trustee will automatically take over until your own Trustee comes back on the Mesh. All this happens seamlessly and automatically, so you don't have to worry about an interruption in any of your mesh services.
I forgot my passcode. How do I reset it?
To eliminate social engineering and identity theft, THERE IS NO CENTRAL SERVICE TO HELP YOU RESET YOUR PASSCODE should you forget it. Neither Hushmesh or the Mesh In service knows your passcode, only your Trustee does. So only your personal Trustee can help you reset it. You must have linked your phone with your Trustee (using your passcode) before you can use your Trustee to reset your passcode.
If you have linked your phone to your personal Trustee, you can reset your passcode by navigating to the "Reset my Passcode" menu item under "Security" in the Mesh In app menu. If you have not linked your phone with your personal Trustee, you will not be able to reset your passcode.
If you have lost all hope of remembering your passcode, you can start over with a new identity. If you enter your passcode incorrectly too many times you will see a screen telling you that your identity has been locked. You can start over with a new identity using the link that appears on that screen.
If you have linked your phone to your personal Trustee, you can reset your passcode by navigating to the "Reset my Passcode" menu item under "Security" in the Mesh In app menu. If you have not linked your phone with your personal Trustee, you will not be able to reset your passcode.
If you have lost all hope of remembering your passcode, you can start over with a new identity. If you enter your passcode incorrectly too many times you will see a screen telling you that your identity has been locked. You can start over with a new identity using the link that appears on that screen.
Is it OK to share my passcode with people that I trust?
Your passcode is a secret between you and your Trustee. We strongly recommend that you do not share your passcode with others, even those you trust.
Should you want to enable others to act on your behalf on the Mesh, you will be able to authorize them by other means (delegation features coming soon.) In doing so, any transactions performed by anyone on your behalf will be explicitly authorized, signed and logged to be able to keep track of what action took place and by whom.
Should you want to enable others to act on your behalf on the Mesh, you will be able to authorize them by other means (delegation features coming soon.) In doing so, any transactions performed by anyone on your behalf will be explicitly authorized, signed and logged to be able to keep track of what action took place and by whom.
What does it mean to "start over with a new identity"
If you can't remember your passcode and have not linked your phone with your personal Trustee, there is no way at this time for you to reset your passcode. You will need to start over with a new identity. Doing so will preclude access to your previous identity and all its associated data on the Mesh and with some services you mesh into. There is no way to reverse this action or to recover the lost data. It is hence critical that you commit your passcode to memory, and/or that you link your phone with your personal Trustee to be able to reset your passcode if you forget it.
Why do a I need a recovery code?
When you enroll on the Mesh, we send you an "IMPORTANT" email containing a recovery code. This recovery code enables you to link a new phone to your mesh identity if you do not have a personal Trustee, or if you do not have ready access to it.
Keep this code somewhere you can easily get access to it if/when you need it. It's OK to carry it with you; in your wallet for instance. It may be a good idea to carry it with you, on a trip for example, as you will not have access to your personal Trustee should you lose your phone while on travel and need to link a new one. Recovery codes can only be used in combination with your phone number and passcode, so they are not sensitive on their own. Never store your mesh passcode and recovery code together. A good idea might be to give a copy of your recovery code to a friend, or leave it somewhere at home where you can call someone to help you should you need it.
Keep this code somewhere you can easily get access to it if/when you need it. It's OK to carry it with you; in your wallet for instance. It may be a good idea to carry it with you, on a trip for example, as you will not have access to your personal Trustee should you lose your phone while on travel and need to link a new one. Recovery codes can only be used in combination with your phone number and passcode, so they are not sensitive on their own. Never store your mesh passcode and recovery code together. A good idea might be to give a copy of your recovery code to a friend, or leave it somewhere at home where you can call someone to help you should you need it.
What do the blinking lights on my trustee mean?
Coming soon.
How can our organization add the Mesh as an Identity Provider?
Please contact us at info@hushmesh.com to join our Preview program.
As a developer, you can find our documentation at developer.hushmesh.com, and you can use our relying-party application registration tool to register your app.
As a developer, you can find our documentation at developer.hushmesh.com, and you can use our relying-party application registration tool to register your app.
How can we add the mesh in experience to our product/service?
Please contact us at info@hushmesh.com to join our private pilot trials. Once commercially available, your organization will simply be able to get access to our public APIs.
How can we integrate your Trustee into our hardware device?
Please contact us at info@hushmesh.com. Although we do not expect to enter into hardware partnerships in 2020, let us know if you have a proposal that we should seriously consider.
What is FIDO?
From the FIDO Alliance website: "The FIDO Alliance is an open industry association with a focused mission: authentication standards to help reduce the world’s over-reliance on passwords." Translation: FIDO adds authentication factors to the traditional domain-centric username/password paradigm. FIDO is extra security bolted onto flawed legacy authentication.
Is the mesh a FIDO authentication method?
No, the mesh is a full-fledged Identity Provider and Trust Network, not just an additional authentication method. The mesh provides you with a pre-authenticated assertion of who the user is, which means that your organization no longer needs to authenticate mesh users at all.
On the mesh, strong authentication is built-in, not bolted on. Every access request comes from cryptographically-unique Trustees that are monitored 24x7, and certified daily.
On the mesh, strong authentication is built-in, not bolted on. Every access request comes from cryptographically-unique Trustees that are monitored 24x7, and certified daily.
Does FIDO enable cryptographic security and key management?
FIDO uses public key cryptography to add an extra authentication factor. It only does so upon explicit registration with a service by the user. FIDO does not enable any cryptographic capability beyond that, and requires users to handle registrations with each and every service on their own.
In contrast, each Trustee fully automates the management of keys on behalf of its user. The mesh enables the transition to using native keys, not just as an additional authentication factor but for all other purposes such as personal data encryption and/or signing. This is a critical step for upcoming blockchain-type systems (with tamper-proof and non-repudiation characteristics) that require that users handle their own private keys. None of this is contemplated by FIDO.
In contrast, each Trustee fully automates the management of keys on behalf of its user. The mesh enables the transition to using native keys, not just as an additional authentication factor but for all other purposes such as personal data encryption and/or signing. This is a critical step for upcoming blockchain-type systems (with tamper-proof and non-repudiation characteristics) that require that users handle their own private keys. None of this is contemplated by FIDO.
Will FIDO ever help secure all accounts for all users?
FIDO is an industry initiative focused on standardizing two-factor authentication for domain-centric identity systems, primarily to facilitate adoption by service providers. FIDO does not, however, address any of the increased burden and complexity put on end-users by the multitude of accounts and the patchwork of security point-solutions.
FIDO requires people to explicitly register their authenticator with each and every account they want to protect. Worse, the loss of an authenticator makes it harder for users to recover their accounts. The FIDO "best practices" recommend that services encourage users to register multiple authenticators to facilitate recovery. So users are expected to register multiple authenticators, with each and every service they use... No wonder two-factor authentication never really caught on with mainstream consumers, and never will with or without FIDO.
In contrast, the mesh requires a single self-service enrollment with your Trustee to enable all participating services to secure your accounts with it. You also keep your Trustee at home, which minimizes the risk of loss. And if you lose your phone, you can buy a new one and re-enroll once to recover all your accounts. The mesh also enable the same level of authentication, security and trust across all participating domain, thereby enabling entire digital ecosystems to be transact seamlessly.
FIDO requires people to explicitly register their authenticator with each and every account they want to protect. Worse, the loss of an authenticator makes it harder for users to recover their accounts. The FIDO "best practices" recommend that services encourage users to register multiple authenticators to facilitate recovery. So users are expected to register multiple authenticators, with each and every service they use... No wonder two-factor authentication never really caught on with mainstream consumers, and never will with or without FIDO.
In contrast, the mesh requires a single self-service enrollment with your Trustee to enable all participating services to secure your accounts with it. You also keep your Trustee at home, which minimizes the risk of loss. And if you lose your phone, you can buy a new one and re-enroll once to recover all your accounts. The mesh also enable the same level of authentication, security and trust across all participating domain, thereby enabling entire digital ecosystems to be transact seamlessly.
What is your timeline for commercial availability?
Our Trustees are scheduled to be production-ready in Q3 2020. We are planning to run pilot trials in Q3-Q4 2020. We hope to reach commercial availability in Q4 2020. Early pilot partners will get preferred access to early commercial units.