June 2026: New Guidance for Virtual Keyboards & Mobile Identity Protocols in IT

June 2026: New Guidance for Virtual Keyboards & Mobile Identity Protocols in IT

The landscape of Information Technology is evolving yet again with the June 2026 publication of two pivotal standards. These address virtual keyboards user interface guidance and essential protocols for mobile identity systems. As part of the ongoing transformation in digital experiences and secure identity issuance, these standards set new benchmarks that organizations and professionals in IT must know. This article explores the newly released ISO/IEC 22121-1:2026 and ISO/IEC TS 23220-3:2026, providing industry context, technical details, and critical implementation insights.


Overview / Introduction

Information Technology and Office Equipment continues to drive digital innovation, from user interface improvements to robust identity management in mobile ecosystems. Standards in this domain ensure consistency, security, accessibility, and flexibility across countless applications—impacting device manufacturers, software vendors, system architects, compliance officers, and end-users alike.

This article helps you uncover:

  • What’s new in user experience and security requirements for virtual keyboard designs
  • How the latest protocols streamline and protect mobile identity issuance and installation
  • Which industries are most affected
  • Strategies for adopting and complying with these June 2026 standards

Detailed Standards Coverage

ISO/IEC 22121-1:2026 - Virtual Keyboards User Interfaces: General Guidance and Requirements

Information technology — Virtual keyboards user interfaces — Part 1: General guidance and requirements

ISO/IEC 22121-1:2026 sets comprehensive general requirements and guidance for all types of virtual keyboards. This includes not only on-screen keyboards found on smartphones and tablets, but also projected keyboards and audio-based interfaces for accessibility. The standard distinctly excludes physical keyboards—even those with dynamic displays—focusing solely on software alternatives and their design, adaptation, and functionality.

Scope and Application

The standard covers:

  • General concepts of virtual keyboards: on-screen, audio, tactile, projected
  • Requirements for display modalities, user manipulation methods, and output diversity
  • Recommendations for adaptation to user needs, tasks, and specific contexts (including accessibility)
  • Definitions for terms such as keyboard layout, focus, cursor, scanning, prediction, navigation keys, etc.

Who should comply:

  • IT product managers and software developers building user interfaces
  • Manufacturers of touch-enabled devices and smart appliances
  • UX/UI designers and accessibility specialists
  • Device compliance and quality managers

Key Requirements & Specifications

  • Conformance to Clause 7 on basic functionalities (e.g., visual display, visual and audio feedback, character/symbol rendering)
  • Support for backup/alternative input methods (audio/tactile) for inclusive design
  • Adaptation frameworks: the keyboard must be customizable for various user abilities, technical contexts, and tasks
  • Visual feedback for keypresses and customizable layouts
  • Recommendations for word prediction, key personalization, and advanced enhancements

Practical Implications

This standard helps ensure that virtual keyboards are:

  • Consistent and easy to use across applications and devices
  • Inclusive for users with disabilities by supporting multiple modalities
  • Adaptable to localization, user preferences, and device forms

It is especially crucial for any organization producing embedded systems, consumer electronics, kiosk software, or cross-platform mobile apps.

Key highlights:

  • Sets out global requirements for all types of virtual keyboards, beyond just touch screens
  • Mandates adaptability for accessibility and diverse contexts
  • Gives a foundation for consistent, user-focused interface designs

Access the full standard:View ISO/IEC 22121-1:2026 on iTeh Standards


ISO/IEC TS 23220-3:2026 - Protocols and Services for Mobile Identity Installation and Issuing

Cards and security devices for personal identification — Building blocks for identity management via mobile devices — Part 3: Protocols and services for installation and issuing phase

ISO/IEC TS 23220-3:2026 describes the core building blocks, protocols, and service interfaces for issuing and installing mobile electronic ID (eID) documents. It targets systems that manage personal identification via smartphones, tablets, or wearables by standardizing the discovery, installation, and secure provisioning of credentials and attributes during setup.

Scope and Application

  • Specifies application descriptors, attestation objects, and secure communication interfaces for mobile ID (mdoc) apps
  • Defines security and privacy-enhancing mechanisms to prevent data cloning, unauthorized access, or exposure
  • Includes discoverability for new devices and efficient, secure workflows for installation and document issuance
  • Addresses data structures, APIs, and certification referencing required for integration in complex eID systems

Who should comply:

  • eID system architects and software designers
  • Mobile security device vendors and platform maintainers
  • Government and private issuing authorities (banks, telcos, transport, public services)
  • Quality and compliance managers involved with credential lifecycle operations

Key Requirements & Specifications

  • Describes modular protocols for:
    • Device and app discovery
    • Secure installation of identity (mdoc) apps
    • Attribute and credential issuing workflows
  • Requires integration with various secure area (SA) technologies, including TEE, hardware elements, and software containers
  • Mandates integrity checks, cryptographic proof of possession, and attestation structures (e.g., COSE_Sign1, JWT/CWT claims)
  • Outlines discoverability technologies: QR codes, NFC, BLE, WiFi, secure internet protocols
  • Enforces privacy by minimizing attribute exposure and supporting user binding mechanisms

Practical Implications

  • Standardizes the onboarding of new identity apps: Ensures that identities can be securely issued, installed, and managed on any compatible mobile platform
  • Supports multi-device workflows: Enables credential migration and recovery, and supports companion devices like smartwatches
  • Flexible for multiple use cases: Useful for national IDs, driver's licenses, banking credentials, and beyond

Deploying this standard helps issuers, service providers, and end-users trust that mobile identity credentials are exchanged securely, privately, and interoperably, even across different device vendors and national systems.

Key highlights:

  • Establishes secure, privacy-respecting installation and issuance for mobile eID
  • Supports multi-technology discoverability (QR, NFC, BLE, WiFi)
  • Enables trust with standardized attestation and certification referencing

Access the full standard:View ISO/IEC TS 23220-3:2026 on iTeh Standards


Industry Impact & Compliance

Both June 2026 standards have the potential to be transformative, given the critical role of virtual interfaces and mobile identity solutions in today’s information-centric environments.

Impact on Businesses and Practitioners

  • User Experience Leaders: Gain a global reference for consistent, accessible virtual keyboard designs, reducing inefficiencies and missed accessibility goals
  • Security Architects and Identity Managers: Rely on a unified, vetted protocol for secure provisioning of credentials, minimizing risk and supporting regulatory priorities (e.g., GDPR, eIDAS, ISO/IEC 27001)
  • Procurement and Product Managers: Can standardize requirements, ease vendor comparisons, and speed up onboarding of compliant devices and partners

Compliance Considerations and Timelines

  • Organizations should review the standards’ requirements promptly and plan for updates to product and service lifecycles
  • Adoption within 12–24 months is recommended for new product releases; legacy products may require updates, especially in regulated sectors
  • Certification and quality audits might demand proof of conformance to these new specifications
  • Non-compliance risks include usability complaints, loss of market access, or data security liability

Benefits of Early Adoption

  • Stronger security, privacy, and accessibility compliance
  • Improved interoperability across vendors, platforms, and borders
  • Competitive differentiation via advanced, standards-driven design and operations
  • Enhanced end-user satisfaction and trust

Technical Insights

Common Technical Requirements

Both standards share an emphasis on:

  • Modularity: Building block approach allows tailored integration in diverse systems
  • Interoperability: Promotes seamless exchanges across global vendor and regulatory environments
  • Security: Cryptographic attestation, secure channels, and robust privacy mechanisms are core
  • Adaptability: Requirements ensure inclusivity and accommodate technical and user diversity

Implementation Best Practices

  1. Assess product/service scope: Review current virtual keyboard and identity lifecycle domains
  2. Map requirements to lifecycle: Identify steps for UI testing, accessibility implementation, security checks, and credential management
  3. Adopt modularity: Build or source solutions that support plug-and-play with attestation and discovery features
  4. Train teams: Ensure cross-disciplinary understanding among developers, UX designers, and compliance leads
  5. Engage in early testing/certification: Pilot in controlled environments to validate adherence and user experience

Testing and Certification Considerations

  • Virtual keyboards: Test across device types/OSs for adaptive display, accessibility, prediction accuracy, and consistent feedback
  • Mobile ID protocols: Validate cryptographic workflows, secure area attestation, and cross-device provisioning using standardized APIs
  • Utilize third-party or in-house certification tools that reference these standards

Conclusion / Next Steps

June 2026’s additions to Information Technology standards represent key advances in both digital accessibility and secure personal identification. ISO/IEC 22121-1:2026 offers a strong framework for inclusive, adaptable virtual keyboard designs, while ISO/IEC TS 23220-3:2026 empowers secure, interoperable identity management and provisioning on mobile platforms.

Key recommendations:

  • Evaluate your digital product workflows and compliance obligations in light of these standards
  • Collaborate across UX, security, development, and compliance functions
  • Begin implementation testing and adapt existing solutions where possible
  • Stay connected with future iTeh Standards updates for the latest guidance

Explore the full details of each standard, assess your needs, and ensure your organization remains at the forefront of digital innovation and compliance in Information Technology.


Visit iTeh Standards to access these and other crucial IT standards for June 2026 and beyond.

Loading...