{"id":399,"date":"2009-08-12T17:03:55","date_gmt":"2009-08-13T01:03:55","guid":{"rendered":"http:\/\/netmesh.info\/jernst\/?p=304"},"modified":"2009-08-12T17:03:55","modified_gmt":"2009-08-13T01:03:55","slug":"on-identity-business-models-or-lack-thereof","status":"publish","type":"post","link":"https:\/\/upon2020.com\/blog\/2009\/08\/on-identity-business-models-or-lack-thereof\/","title":{"rendered":"On Identity Business Models or Lack Thereof"},"content":{"rendered":"<p><a href=\"http:\/\/blogs.kuppingercole.com\/kuppinger\/\">Martin Kuppinger<\/a>, leading analyst of all things digital identity, based in Munich, Germany, called earlier this week for a conversation about business models for identity product and service companies.<\/p>\n<p>A good reason to ponder what we&#8217;ve learned in the past year or so about those business models or, more correctly, lack thereof. Here are my thoughts:<\/p>\n<h3>On the identity provider side:<\/h3>\n<ul>\n<li>It&#8217;s been conclusively established that there is no business model for a <em>standalone hosted identity provider<\/em>. Many companies have tried, with nothing to show for it. FreeYourID is the latest to <a href=\"http:\/\/www.techcrunch.com\/2009\/07\/25\/freeyourid-gives-up-on-trying-to-monetize-openid\/\">give up<\/a>. With <a href=\"http:\/\/mylid.net\/\">MyLID.net<\/a>, we had one of the first ones at NetMesh, but stopped investing in it years ago. Seems we did the right thing there. There is no indication that some newcomer could suddenly make it work either.<\/li>\n<li><em>White-labeled hosted identity provider<\/em>. Some companies tried that, and at some point it looked like there was a &#8220;there&#8221; there, but the vast majority of identity providers on the internet are homegrown. Major companies (say, banks) that should want to be identity providers so far have shown no inclination to want what we would want them to want. There are no indications that this will change any time soon.<\/li>\n<li><em>Authentication provider<\/em> (i.e. a minimalistic identity provider that only wraps a standard identity protocol, like OpenID, around strong authentication, like a smart card). This could work for vendors in the strong authentication business, but so far there is no existence proof. I don&#8217;t think anybody has really tried, so it&#8217;s too early to tell.<\/li>\n<li>Identity provider <em>as part of a larger product<\/em> that does not focus on identity per se. This approach has been very successful. Examples: Amazon is an identity provider of their customers for the merchants on their site. Facebook Connect. Downside: it&#8217;s not a new business opportunity, only an add-on to an existing business.<\/li>\n<li><em>Identity provider software<\/em>. Long-established, moderately successful, dominated by enterprise software companies like Oracle, Sun, IBM etc. Not a new business opportunity either. No evidence that it works for sites outside of the corporate firewall though.<\/li>\n<\/ul>\n<h3>On the relying party side:<\/h3>\n<ul>\n<li><em>Relying party software kits<\/em>. There is a range of open-source libraries with many customer complaints against them. They prove just how hard it is to productize such a kit, and there is no evidence that anybody would license such software. Does not look like a business opportunity.<\/li>\n<li>Relying party functionality <em>as part of a larger product<\/em> tends to be in high demand. However, that&#8217;s just another feature of an existing product, and thus not a business opportunity except perhaps for being acquired real quick by the vendor of the product.<\/li>\n<li><em>Relying party functionality as-a-service<\/em> is an interesting idea that has been around for a few years with little uptake. However, that may be changing slowly. A number of business questions will have to be sorted out before there is any chance of major uptake. And: can sufficient revenue be generated from it? Nobody knows.<\/li>\n<li><em>Strategy or technical consulting<\/em> related to accepting identities. That opportunity certainly exists, and we&#8217;ve helped a few customers there and earned a few dollars. However, it remains to be seen whether there is a mainstream market for it, not just a few early adopters.<\/li>\n<\/ul>\n<h3>Value-added services:<\/h3>\n<p>Many people have ideas for value-added services that could be sold once sufficiently many users used internet identities at enough sites. The trouble is that the transaction volume for <a href=\"http:\/\/openid.net\/\">OpenID<\/a> (or any other identity technology on the internet) is still far too low to make this viable.<\/p>\n<p>So the verdict here is: perhaps in the future.<\/p>\n<p>&nbsp;<\/p>\n<p>So what&#8217;s an analyst, or conference organizer, or entrepreneur, or venture capitalist to do? My take:<\/p>\n<p>Hang in there, keep the burn rate low, make no major moves, would be my advice. (Believe it or not, sometimes I&#8217;m being asked about my advice on this.) All the signs are pointing in the right direction, the latest being Google&#8217;s major OpenID push. Let&#8217;s not confuse being majorly annoyed how long this is all taking (speaking about myself here) with something being fundamentally wrong (because there isn&#8217;t).<\/p>\n<p>Sooner or later, at least the value-added services opportunity will emerge. Perhaps others. But so far it has not yet.<\/p>\n<p>P.S. of course I appreciate your comments, particularly if you disagree ;-)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Martin Kuppinger, leading analyst of all things digital identity, based in Munich, Germany, called earlier this week for a conversation about business models for identity product and service companies. A good reason to ponder what we&#8217;ve learned in the past year or so about those business models or, more correctly, lack thereof. Here are my&hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"webmentions_disabled":false,"footnotes":""},"categories":[60],"tags":[],"class_list":["post-399","post","type-post","status-publish","format-standard","hentry","category-digital_identity","kind-"],"kind":false,"_links":{"self":[{"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/posts\/399","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/comments?post=399"}],"version-history":[{"count":0,"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/posts\/399\/revisions"}],"wp:attachment":[{"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/media?parent=399"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/categories?post=399"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/upon2020.com\/blog\/wp-json\/wp\/v2\/tags?post=399"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}