[Spearchucker]

Identity federation seemed to promise solutions to some of these problems, but never quite took off. The part I liked most was the ability to verify someone as being over 18 without divulging their age or any other meta data. That was 10 years ago though, and I have no idea what the citizen/consumer identity space looks like now.

Did the industry ever get around the sub-par SAML protocol which had no support for the active requestor profile, and the superior WS-Federation protocol which had to use the technically superior SAML token?

[motohagiography]

OIDC is just starting to get some traction in instutions, but it's really about federated authentication with trust of the IDP implied. Digital identity itself is still in the context of the given IDP you've federated to, and there isn't much better than whatever their enrolment process is.

There are a couple of companies that are using hyper ledger to federate identity providers like banks, governments, and other institutions, but the scope of that identity is still local to the federation participants who are a walled garden of their own.