myID as it stands is a bit of a farce. It uses OIDC under the hood, but it only supports end users that download the myID app on their smartphone via the Google Play Store or Apple App Store. Security is effectively outsourced to Google and Apple as the user's identity is "pinned" to their smartphone.
Take myGov in contrast which is web-capable and supports users to use a Yubikey or Passkey/Webauthn-capable device to authenticate.
Under the Australian Digital ID scheme myGov will likely be usurped by myID, which is, in my view, an inferior scheme which blatantly ignores basic standards.
Take myGov in contrast which is web-capable and supports users to use a Yubikey or Passkey/Webauthn-capable device to authenticate.
Under the Australian Digital ID scheme myGov will likely be usurped by myID, which is, in my view, an inferior scheme which blatantly ignores basic standards.