Category Archives: NFC

OpenNFC – Game Changer

Posted on by
4

24 February 2011

Monday I wrote about Apple’s “NFC Twist” and how a multi SE environment impacted MNO’s NFC business case. From Monday (I hate to quote myself.. but it keeps from following the link)

The champion of Multi SE architecture is Inside Contactless (OpenNFC).. a very very smart “Judo” move that leverages NXP’s substantial momentum (in integrated NFC/controller/radio) against itself. Inside’s perspective is that there is no reason for the ISO 14443 radio to ONLY be controlled via NFC (treat it like a camera). Inside’s OpenNFC provides for “easily adaptable hardware abstraction software layer, which accounts for a very small percentage of the total stack code, meaning that the Open NFC software stack can be easily leveraged for different NFC chip hardwalet multiple applications and services access it”. Handset manufactures love this model.. MNOs hate it. As I stated previously, closed systems must develop prior to open systems as investment can only be made where margins and services can be controlled. OpenNFC changes the investment dynamics for MNOs, and provides new incentives for Google/Apple/Microsoft, … to transition their closed systems into NFC platforms.

For Banks, Handset Manufacturer and Startups…

I cannot understate the importance of this approach.  My guess is that Apple, Motorola and RIM are all planning to pursue “OpenNFC” .  Multiple applications can now leverage the 14443 radio IN ADDITION TO the MNO controlled (SWP/SE) environment. Applications can then ride “over the top” independent of carrier controlled (TSM Managed) OTA provisioning.

In business terms, what does this mean? ISIS was founded under the assumption that it controlled the radio and all applications accessing it under NFCs  secure element (SE)  single wire protocol (SWP). Nothing could use the radio unless the ISIS TSM (Gemalto) provisioned it. Visa, Mastercard, Amex were all looking at a future where the BEST they could do was exist as a sticker on the back of the phone. In the OpenNFC model, the radio can be accessed directly through the handset operating system (assuming the OS integrates to the Inside OpenNFC controller).  This provides the ability for applications on Android and iPhone to access the radio. In this model, Mastercard DOES have the ability to get PayPass into the phone. My guess is that one driver of MasterCard’s hiring of Mung-Ki Woo from Orange was his unique perspective on how to make PayPass work within this InsideContactless model.

For ISIS? This is a tremendous impact to their business model. Perhaps something they cannot recover from. MNOs invested tremendous effort in developing NFC, now they are having their legs taken out from under them by a contactless vendor and the handset manufacturers. For ISIS to succeed they must run much faster and expand scope from a narrow payment pilot (over next 18 months) to building a platform that can compete AND interoperate against Android. Yeah.. that big. Their advantage is in control, security and provisioning. Unfortunately, because they have focused on the “control” aspect as the centerpiece of their  business model, they have developed no alliances. In this, ISIS may well follow the failure of Canada’s Enstream. A group that got all of the technology right but failed to develop a sustainable business model.

Start-Ups

Start building to OPEN NFC. Game IS ON. Assume that Android and iPhone will let you access the radio…. For a fee.

For Consumers

CHAOS. What do you do when 5 applications all want to submit your payment.. .or read an RFID.. which one do you use?  For a view on the mess this will cause, see the Stolpan whitepaper

I believe this approach benefits Apple much more than Google. Apple’s platform “control” and QA testing will be essential to getting this off the ground. My guess is that Apple will have only ONE NFC payment option.. APPLE PAYMENTS. Perhaps a gatekeeper model where multiple cards can be store but Apple collects a fee.

Although Apple has an advantage in control. Google has the opportunity to deliver a much better value proposition to consumers, businesses and application developers. I’ll stick by my Axiom that new networks must start as closed systems delivering value to at least 2 parties. But can Apple compete with its Gosplan (USSR State Planning) like controls against open Android?

Background

NFC Background for non-techies reading the blog, there have been many, many global pilots of NFC.. but no production rollouts. From my previous blog

What is NFC? Technically it operates on the same ISO/IEC 14443 (18092) protocol as both RFID and MiFare so how is it different? I’m not going to get into the depth of the technology (see Wikipedia), but the biggest driver was  GSMA/NFC Forum’s technical definition (UICC/SWP) that ENABLED CARRIERS to control the smart card (NFC element). This in turn enabled carriers to create a business model through which they could justify investment (See NFC Forum White Paper).

iPhone 5 – NFC “Twist” (OpenNFC)

Posted on by
3

Update Mar 14

No NFC for iPhone 5. Too many architecture considerations.. (below). So while their patents clearly indicate it is in their plans.. they have not been able to coordinate all of the design into their iPhone 5 program (from hardware through software and apps).

See article from UK’s Independent

Update Mar 3

Multiple SEs are too complicated for Apple. Think they actually want to control everything and have one wallet with multiple cards. So much for ISIS having a TSM. Verizon/AT&T must be pushing back.. why subsidize the iPhone and let Apple control it? My guess is that JPM and Visa are also Apple launch partners (which further diminishes ISIS value prop). The downside of controlling everything.. is that YOUR TEAM becomes a throttle to success.

Feb 21 2011 (Updated)

Apple is a tremendous company, beyond its design and technical prowess the factor that most impresses me is its unique ability to maintain confidential information. How can such amazing innovation come out of a company that seems to operate as a mix between the CIA and the Hotel California (checkout any time you like… but you can never leave…)?

Last week Brian White of Ticonderoga Securities spoke of Apple’s plans for NFC with a unique twist. So what is the “twist? My guess is that the TWIST relates to Apple’s plan to support multiple Secure Elements (ie, one embedded,  another in UICC).  This would allow Apple to “support” MNOs driven initiatives and also create a closed system (described in many patents below).

For background on multi SEs see GSMA whitepaper

The GSMA NFC project recommends the UICC as the most appropriate secure element (SE) in mobile phones. It is foreseen that other secure elements (removable and non removable) may be implemented in mobile phones. As a consequence, applications may be hosted in secure elements other than the UICC. The selection of the secure element hosting the targeted application shall be solved. This case only applies in card emulation mode.

Most NFC pilots have launched with a single application in a simplified environment. The long term future of what NFC really looks like is very, very hazy. Many potential complexities arise, as best described in the Stolpan whitepaper (a EU consortium now largely defunct, an irony in its own right). Apple (or ANY MNO) certainly can’t build a business on this complexity. A multi SE architecture could also provide Apple with a mechanism to address anti-trust challenges on platform fees and openness/control (Washington Post – Apple’s Subscription Model Sparks Antitrust Concerns).  Apple would compete on quality of service and integration, but allow other applications to also “exist” in a separate environment with a different “trust”.

The champion of Multi SE architecture is Inside Contactless (OpenNFC).. a very very smart “Judo” move that leverages NXP’s substantial momentum (in integrated NFC/controller/radio) against itself. Inside’s perspective is that there is no reason for the ISO 14443 radio to ONLY be controlled via NFC (treat it like a camera). Inside’s OpenNFC provides for “easily adaptable hardware abstraction software layer, which accounts for a very small percentage of the total stack code, meaning that the Open NFC software stack can be easily leveraged for different NFC chip hardwalet multiple applications and services access it”. Handset manufactures love this model.. MNOs hate it. As I stated previously, closed systems must develop prior to open systems as investment can only be made where margins and services can be controlled. OpenNFC changes the investment dynamics for MNOs, and provides new incentives for Google/Apple/Microsoft, … to transition their closed systems into NFC platforms.

Along these lines (Apple AppStore into NFC Platform), I need to correct the assertion I made in my previous blog Apple and NFC.  In it I stated that NFC “control” for Apple was about advertising control (not payment revenue).  What if Apple evolves all of its current applications into a “trusted” (in NFC context) environment, with secure storage and access restrictions (GPS, Alerts, phone, camera, NFC element, payment, advertising, enforced customer anonymity, …)? Apple could also enable this new architecture to support new secure areas for the Mobile operator (or other TSM) to provision secure services, or even an “open area” where the customer can run anything they want.  In this multiple secure element example, Apple would seek to control (and monetize) access to device services and seek to INCENT all providers to run within the APPLE SECURE ENVIRONMENT.. but would provide an alternative (that it does not manage, support or control).

If this is indeed Apple’s plan I will have to update my prognostication on the death of mobile apps (in favor of HTML 5). Particularly for Apps that leverage any of the Apple services I list above. This scenario is consistent with Apple’s  Patent US10200082444 PORTABLE POINT OF PURCHASE USER INTERFACES

[0088] Close range communication may occur through the NFC interface 60. The near field communication (NFC) interface 60 may operate in conjunction with the NFC device 44 to allow for close range communication. The NFC interface 60 may exist as a separate component, may be integrated into another chipset, or may be integrated with the NFC device 44, for example, as part of a system on a chip (SoC). The NFC interface 60 may include one or more protocols, such as the Near Field Communication Interface and Protocols (NFCIP- 1) for communicating with another NFC enabled device. The protocols may be used to adapt the communication speed and to designate one of the connected devices as the initiator device that controls the near field communication. In certain embodiments, the NFC interface 60 may be used to receive information, such as the service set identifier (SSID), channel, and encryption key, used to connect through another communication interface 58, 64, 66, or 68.

[092] … The security features 74 may be particularly useful when transmitting payment information, such as credit card information or bank account information. The security features 74 also may include a secure storage area that may have restricted access. For example, a pin or other verification may need to be provided to access the secure storage area. In certain embodiments, some or all of the preferences 72 may be stored within the secure storage area. Further, security information, such as an authentication key, for communicating with a retail server may be stored within the secure storage area. In certain embodiments, the secure storage area may include a microcontroller embedded within the electronic device 10.

There are 4 market forces at work which may drive a multi-SE approach

  • Protect App Store/iTunes Model
  • Support MNO Models
  • Anti-Trust Concerns
  • Control Platform

Your feedback is welcome

– Tom

Other Information

Mastercard/RIM: Mobile Payments Dark Horse

Posted on by
Reply

17 Feb 2011

My blogs will be getting shorter.. quite a busy month. I’ve been very quiet on RIM and Mastercard and thought it was time to speak up for a group with a good plan and great leadership. Facts:

  • MA just hired Mung-Ki Woo from Orange to lead mobile
  • MA has abandoned Obopay (Obopay set to announce VMT integration in next few weeks)
  • RIM is the only handset manufacture with a card partnership. MA has announced RIM partnership in Sept 2010
  • Original MA proposal to RIM was from now defunct eComm Financial. (eComm’s assets are TBD, but my guess is that MA has acquired them)
  • RIM has announced NFC plans for handsets this year
  • RIM has 3 core assets not held by competitors: corporate server, “push/PIN” messaging and a hardened secure architecture with military grade encryption
  • RIM has failed in business leadership with its own “app world”
  • RIM’s user demographic is unbeatable..
  • Mastercard is 5 years ahead of Visa on contactless and in NFC.

My theory is that RIM may have a unique way to get to market and circumvent ISIS in the US. Keep your eyes peeled for anything surrounding the TSM for RIM. If RIM and MA are smart (and they are) they will work to design a TSM as an extension to RIM’s existing PIN messaging architecture (secure).

BlackBerry PIN-to-PIN (sometimes referred to as Peer-to-Peer) messaging is similar to e-mail in that it allows BlackBerry device users to send messages to each other, but with important differences:

A “PIN” is a hardware address, similar to a computer network adapter’s MAC address, and is unique to every BlackBerry device. A “PIN” is not an authentication password nor is it a user identifier. It is the method by which the BlackBerry device is identified to the RIM relay for the purpose of finding the device within the global wireless service providers’ networks.

In this relay service RIM has a global directory of BBs, IMEI/PIN, MNO provider, BES Server, eMail, … and hence the “ability” to directly message customers and for customers to message each other (independent of contracts and BES service PIN limitations).

What all this means is that if RIM puts the ISO 14443 radio on the phone, it doesn’t need the standard NFC/SWP architecture… it has the facilities for OTA provisioning and secure applications separate from a UICC. Carriers will not be in a place to dictate phone architecture to RIM as they are procured directly by governments, and corporatations.. For example, the US government should prefer this architecture, as it gives the handset owner and BES provider control over who is the “TSM” in a quasi NFC context. 

This keeps it all very simple for Mastercard, as they can roll out PayPass in Blackberry without MNO support… For banks.. this means that RIM/Mastercard may be the only way for you to put contactless IN a phone (Stickers are your only other option). The Google Android ecosystem is somewhat disadvantaged here:

  • They are heavily depending on ISIS MNOs for distribution
  • They are not in control of handset hardware architecture
  • No OTA provisioning alternative (like RIM’s PIN Relay)

Lets see if RIM and MA can pull off the business execution.

– Tom

Disrupting Payments at the POS

Posted on by
Reply

7 February 2011

(Note: I apologize for the typos here in advance.. I really do need an editor)

At the end of the year, I try to do a little research… catch up on reading and relationships… all while updating my assumptions and predispositions. We are all creatures of our environment. Past experiences influence our views on current events and future expectations.

During this annual Holiday refresh process I try to develop some big picture “themes”. The questions I’m trying to answer: where are the opportunities? Where should I place my “bets”? What fundamental challenges that must be addressed? Are “fundamentals” changing (core innovation or at periphery)? Who has built a great team? Distruptive Innovations? The 3 areas I’m currently focusing on are: payments, mobile, and convergence (digital/real world).

Anyone that has read this blog knows I am a big fan of Clayton Christensen (author of Innovator’s Dilemma and coiner of term “Disruptive Innovation”).  From claytonchristensen.com:

An innovation that is disruptive allows a whole new population of consumers access to a product or service that was historically only accessible to consumers with a lot of money or a lot of skill

 The litmus test for disruption involves delivering service in a substantially different cost structure. A key example is delivering simplified “good enough” product to a demographic that is “over served” by existing providers. From my (very limited) purview, there seems to be 2 core disruptive innovations that will influence payments at the Point of Sale (POS):

  1. NFC as a Payment Platform
  2. Mobile as an Incentive/Advertising Platform

There are numerous environmental forces that are shaping how these disruptive innovations will manifest themselves, for example:

  • Bank Ownership/Control of payment networks
  • Non Traditional Banks (Target, WalMart Mexico, Discover/Barclays)
  • Regulations
  • Specialization of Labor in Payment Services (Ops, Fraud, Risk, Platform, Support, Compliance, Banking, Acquiring, Processing, Authorization, … )
  • Handset Platforms (Android, iPhone, …etc)
  • Mobile Network Operator (MNO) platforms (NFC, ISIS, Advertising, Carrier Billing … )
  • Retailer Analytics (ie Price Optimization)
  • Advertising Analytics (ie. Adding location context)
  • Consumer Behavior
  • Price Transparency (Merchandise, Bank Fees, …)
  • Social Networks (Groupon, Facebook, … )
  • Consortiums and Partnerships

NFC as a Payment Platform

Mastercard’s PayPass was the first major contactless card program. Within the scope of the 2003 pilot program:

  • PayPass Technical Standards
  • PayPass Certification
  • Consumer PayPass Tokens
  • POS Terminals (which accept tokens)
  • Issuer Participation
  • Retailer/Transport Participation

Following MA, all of the other card networks have launched their own proprietary contactless products. They have numerous form factors, including: stickers, Key fobs, chips in cards, …etc.  Although most are based upon the same ISO 14443 technical specification… each payment process is proprietary and technology must be certified by each card network. Contactless cards ARE NOT a disruptive innovation, although pilots have been “successful” from a consumer use perspective, there were no new markets served nor was a more efficient cost structure developed. Many contactless issues remain unresolved today, these include: merchant POS costs, retailer/network/bank relationships, card reissuance, network effects/consumer demand, mobile application integration. (See previous blog for more detail).

NFC

Mobile Operators and the GSMA created an industry forum to define a broad set of standards surrounding Near Field Communications (see http://www.nfc-forum.org/aboutus/). This is a new “platform” where multiple applications can leverage an ISO 14443/18092 compliant radio/controller (Ex NXP’s PN544 which is in the Nexus S). In business speak, this means that the phone can run software applications which assume the roles of the any of the multiple card “tokens” above. In the NFC world, PayPass is just a software application which can be installed on an NFC enabled phone. The NFC architecture could also facilitate applications to act as a PayPass Reader (POS machine), Oyster Card, or on to take the place of your office badge to open secure doors (Previous Blog on NFC Ecosystem).

The 140 members of the NFC forum have done a superb job of creating a the specifications of a “platform”. Unfortunately, it takes strong business leadership to create a business model (and team) that can execute against it. Generically, key measures of platform success are “ecosystem revenue” and number of entities investing in it (see ISIS Blog). By these measures the ISIS consortium’s plans are severely challenged.  Today, Apple seems better positioned to execute in a “closed” NFC model (see Apple and NFC).

NFC as Payment Platform – Disruption

NFC thus enables a new “software” nature for both existing cards and payment at the point of sale.  Disruption occurs in: cost of customer acquisition, cost of delivering “new” payment services, cost of developing a payment network, cost of POS infrastructure, …etc.. As a side note, there is a separate case to be made that this same disruption exists in emerging markets separate from NFC (See MNOs rule in Emerging Markets).

Card Costs – Industry 101

Anyone in the credit card business knows that acquiring a new customer has 3 primary cost components: marketing, application, activation/use. Marketing is straightforward enough with card cost per acquisition (CPA) driven by marketing effectiveness (direct mail, online, referral, co-brand partner, …) to a specific demographic. CPAs in card can range from $10 to $200+.  Application encompasses collection of consumer data, credit scoring, pricing, acceptance of terms, approval and shipment of physical card. Activation and use is rather self explanatory.. with example costs relating to incentive programs driven on first use.. and continued use.

Future Scenario – PayPal/Bling

Let’s discuss a scenario involving a new payment instrument. Given that Paypal’s analyst day is Wed perhaps: PayPal and Bling at the POS. Today, Bling’s RFID based tags attach to your personal items and enable you to pay at a Bling enabled POS device (including Verifone’s new terminals). This model has a few problems, one is that tags must be mailed and activated. In a future scenario, PayPal has hired Zenius solutions to build a PayPal/Bling POS application within an NFC enabled phone. Now you just download the PayPal app to your iPhone 5 (complete with NFC). Merchant’s POS systems currently allow them to receive updates for each supported payment instrument. In this “future” case, PayPal has decided to eliminate the need for normal merchant agreements.. all that is needed for a merchant to accept a PayPal/Bling NFC payment is a paypal merchant account (with PaymenTech). What are PayPal’s costs in this model? Marketing (and paying the MNO for NFC access).

If PayPal could extend leverage their consumer footprint into the POS, with little cost, what does this mean for banks? It means that the banks could also build a new payment instrument that leverages their customer footprint. Why do you need a Visa or Mastercard brand at all if there is no cost to reissue? For consumers, what payment instrument do you choose? Is there a threat to the  entire concept of a credit card? Apple, Google and Amazon scenarios may also logically follow this example. Retailers like Target could also extend use of their payment instrument outside of their stores (see Target RedCard).

Bank Strategy in this model? See Banks Will Win in Payments

MNO Billing

Carriers in the US, EMEA and Asia are expanding into mobile billing services (provided by Bango, Boku, billtomobile, payforit, …etc). In this model, carriers are taking on some additional credit risk (for post paid accounts) and expanding use of pre-paid. Given that the carriers will be controlling the NFC platform (see related blog), they could also extend this payment capability to the POS with the appropriate processor relationships (ie. First Data, FIS, PaymenTech, …etc).

Disruptive Innovation – Mobile as Advertising Platform

This blog has gone on a little too long.. so will have to make this part 2. The basis for this section is my previous Blog: Mobile Advertising Battle. Disruption is cost to influence a customer prior to purchase. Influence includes targeting that is relevant to customer’s geography, preferences, demographic, transaction context, behavior, …etc

Summary

What does all this mean? What will 2014 look like? Unfortunately I don’t have a crystal ball.. what I would really like to do is charter some smart college team to create a “virtual option market” where we could all participate in pricing/evaluating various options (as laid out in the HBR article Strategy as a Portfolio of Options).

From an investor perspective, the prospect for these disruptive innovations altering the market is real, but with many dependencies and tremendous stakes. Clayton Christensen presented IBM/Intel/Windows as key example in dynamic of disruptive innovation. IBM chose to ignore the PC market.. as the margins were poor. Today, payment incumbents clearly see the threat and are reacting to it. Additionally, incumbents hold many of the “keys” necessary to execute and are well placed to construct new competitive barriers as well as ferment chaos and confusion. Small companies embarking on investments in this space must be versed in dancing with 800 lb gorillas… so ensure you have execs that can fill out the dance card and move swiftly while wearing iron shoes.

ISIS Platform: Ecosystem or Desert

Posted on by
10

3 February 2011

In yesterday’s post I discussed the business strategy behind NFC. I had a great note from head of mobile from one of the large banks this morning. Q: How did Visa and MA loose all of their momentum in contactless? How did we (banks) let this happen?

Banks have let small technology vendors define the market place, and have not demonstrated any leadership in driving the market forward; really makes you appreciate Dee Hock’s creation of Visa — how did he do it in such dysfunctional organizations? 

Visa/MA have made the same mistakes as banks plus they selected a technology which pushed the computing platform to a smart card via an NFC smart card, and then proceeded to do nothing to control the use of that technology, nor did they focus on key merchant categories like retail, grocery, and fuel to implement NFC infrastructure

Banks… here is the good news.. the ISIS team does not seem to be building a platform.. but a payment solution. MNO activities within ISIS:

  • Consortium
  • NFC Platform – “rocket scientist” engineers that developed it.. really
  • Retailer Relationships
  • Discover/Barclays relationships
  • …etc

All of this may be for naught if they can’t build a team capable of running a software platform business. They are appropriately focused on NFC payment, as it is the core of their value proposition and the reasons that the carriers created the consortium. But they have a mile wide hole in their business plan if they don’t start defining how other parties can invest to build out the ecosystem. It takes someone with solid experience to run a platform business (MSFT, Apple, Oracle, Google, ). Payment is just one element.

ISIS today looks like a Disney World with one exhibit.. Google and Apple understand the ecosystem dynamics of building a platform.  If Apple succeeds, all of the investment that MNOs and the GSMA made in building NFC will be lost, or at least permanently stunted.
ISIS Ecosystem Choice

The guiding lesson my teams have learned in helping create networked businesses is that scale is everything. As stated in the Oct 2006 issue of HBR,

[Network] leaders can leverage their higher margins to invest more in R&D or lower their prices, driving out weaker rivals. As a result, mature two-sided network industries are usually dominated by a handful of large platforms, as is the case in the credit card industry. In extreme situations, such as PC operating systems, a single company emerges as the winner, taking almost all of the market. Platforms serving two-sided networks are not a new phenomenon. … New platforms have been created (Google, for example, links advertisers and Web searchers) and traditional businesses have been reconceived as platforms. Yet for all the potential they’ve spotted, platform providers have struggled to establish and sustain their two-sided networks. Their failures are rooted in a common mistake. In creating strategies for two-sided networks, managers have typically relied on assumptions and paradigms that apply to products without network effects. As a result, they have made many decisions that are wholly inappropriate for the economics of their industries.

Problem I run into is that early stage companies cannot take advantage of common infrastructure until there is a critical mass of users (and specialization). Usage drives volume, volume drives profitability, profitability drives investment and specialization, specialization drives innovation, innovation drives more volume…etc. However, prior to this critical mass, where is value creation in a “new” Platform (great book Platform Leadership)? In a “new” payment network? Today, there are early stage companies failing because they bet on NFC too early.

Platform Leadership laid out a very nice framework, but was it for Software platforms only? What about Business Platforms? What is a Business Platform? Is Microsoft/Intel (WinTel) a Platform? Ecosystem?  Channel Masters? The great thing about the high tech space is that it is lightly regulated and operates under very well defined standards. A story is useful to draw context for the general audience of this blog.

Back around 2000/2001 one of my teams at Oracle ran the supply chain exchanges and also helped bring new Oracle products to market. Within HighTech, my solution architects worked with customers (ex. Cisco, Sony, TSMC, MOT, … etc.) as they progressed through standard like RosettaNet. Cisco was a huge proponent of RosettaNet, they viewed real time supply chain information as a key to their profitability (avoid the bull whip effects). The Rosetta PIP standards were crystal clear, but the business case for the manufactures was not. Although they certainly wanted updated demand plans from Cisco, they did not want to provide status of Work in Process WIP). If Cisco had the WIP information, they would then have the channel intelligence to reroute work if a foundry or CM was falling behind. Hence the commoditized suppliers resisted implementation of the WIP standards. Cisco eventually succeeded, as WIP became a competitive differentiator which Cisco was willing to pay for. Cisco is a very strong Channel Master; it owned the platform, the orchestration and the source of demand.

The reason I draw out this story is that network dynamics and incentives are a very complex.. but someone MUST HAVE A PLAN. Channel Masters have the best track record in creating business models where multiple companies invest and participate. Cisco is an example where it is channel master, owns the platform, dominates the ecosystem and is source of direct customer demand. Companies that follow this model (US Gov, Apple, Boeing, Airbus, Mitsubishi, Toyota, Ford,  …).  Some business platforms are completely dependent upon an open, broad participation for growth (Google, Apple AppStore, Java, Wikipedia), while others are closed and regulated (banking, communication, defense, …).

My Advice to start ups:

  • Do not assume ISIS will be successful
  • Do not invest in any ecosystem until there is profiability for the Channel Master and AT LEAST one other group
  • Look beyond US for opportunities. UK and Singapore have excellent consumer dynamics and may be an ideal location for early stage companies.

What will ISIS be? Closed or Open? Successful or … ?

NFC Game: MNOs 1, Banks 0

Posted on by
14

2 February 2011

The actual scoring is probably a little more complicated. This blog is focused on investors and business heads that are not deep in the trenches with mobile payments. There is much written on the technology, standards, pilots and who is doing what.. this is an attempt to understand the business incentives within the ecosystem(s) and WHY key actors are pursuing/supporting different strategies. Getting NFC in a mobile handset was no “obvious” decision for MNOs or Handset manufactures, in fact just 18 months ago Apple told a major bank “we have enough radios in the phone, can’t we just use one of the existing ones?”  The point shouldn’t be missed, there are many, many ways which a consumer can store information and transmit it to another device (like a POS).  As an example: the US State department (in its infinite wisdom) decided to put an unencrypted RFID tag that contains your name and passport #… Another wacky example is Google Zetawire Patent.

Why NFC? Technically it operates on the same ISO/IEC 14443 protocol as both RFID and MiFare so how is it different? I’m not going to get into the depth of the technology (see Wikipedia), but the biggest driver was  GSMA/NFC Forum’s technical definition (UICC/SWP) that ENABLED CARRIERS to control the smart card (NFC element). This in turn enabled carriers to create a business model through which they could justify investment (See NFC Forum White Paper). 

(Sorry for the pedantic nature of this, but since blog readership is going up.. I’m taking some license in assuming that the style is not irritating too many people.. and besides getting right use of terminology is important. )

Banks and card networks have been circling mobile/contactless payments for sometime. Mastercard’s PayPass (2003) led the way for many of the current bank contactless initiatives. Visa later followed (and still trails) with PayWave in 2007, and Discover with Zip in 2008.  All card initiatives operate on the same ISO/IEC 14443 protocol as NFC, most with numerous “successful” pilots.  The issues with contactless card platforms are not technology, but business model.

As with any new “platform” it must support a business model for some… preferably for many … participants. Card focused models focused on either cash replacement (ex. Transit, Vending, P2P, …etc.) or “premium” convenience play (see Best Buy NFC Pilot). For those of you not in the card or retail business… there is little love loss between the 2 groups. Retailers are not about to invest in anything that helps either banks or card networks unless it improves sales or margins (see Banks will win in Credit). The NFC model allowed carriers to control the radio, and integrate it into the SIM (UICC) for management of secure applications and data (see Apple and NFC).

Prior to NFC, the “control” for contactless payment was with each contactless network. Visa and Mastercard took 12-18 months to certify every new device. That meant every single new POS Reader, handset, … had to go through multiple certification processes. What  manufacturer would want to invest in this contactless model? Alternatively, NFC contains standards and specifications operating within ISO 14443 with an independent certification process. The NFC specification does provide for an independent entity, called the Trusted Service Manager (TSM), to assume the role of gatekeeper (See Dutch Example). But MNOs are not likely to give up the keys prematurely. In the US ISIS model, this TSM will be run by Gemalto (for the MNO consortium).

What does this mean? Q: Can Visa develop a PayWave application on an NFC certified phone? Yes.. can Mastercard develop a PayPass Application? Yes.. that have already. Can TFL develop an Oyster Application? Yes. Vendors like Zenius design secure applications that do just that. NFC enables the phone to host multiple applications that can use the “radio” in different ways (example open secure doors). These mobile applications are secure and can be provisioned and updated remotely. This is the “beauty” of the NFC ecosystem. Investors note: In all of these examples, it takes the MNO and/or TSM to approve your application. In the case of Visa and MA… they are not approved.  This means your start up can build the slickest app in the world.. but someone else owns the keys to consumer use.  For Visa and Mastercard: their PayPass and PayWave brands are mere NFC applications that can be denied within the NFC enabled phone.

Another important control point (for NFC payment) is POS infrastructure. A new NFC payment instrument must be supported by both the POS (certfication) and the processor(s). POS terminals typically support multiple standards, protocols and payment insturments (see VivoPay 5000M). For each payment method  (PayWave, PayPass, Zip, Bling, ..) the POS terminal must undergo a proprietary certification process. POS terminals connect to one or more processors (ex. FirstData, FIS, …) and in addition to processing the transaction, the terminals can receive and process updates (example ISIS/Zip protocol which is still in definition). A recent example of POS payment upgrade: Verifone’s efforts to include Bling/PayPal acceptance at POS, a very big story that has received little attention.

The “downside” of NFC for many stakeholders is that they are no longer in control. In the NFC model, the “keys” to the NFC platform sit with the MNO who controls the UICC.  This control is necessary, as it is the MNO who fulfills the KYC (Know your customer) requirement linking a real person to a SIM (and hence to a transaction). In the NFC model, Visa will still need to certify their own NFC software application to be PayWave compliant.. but will NOT necessarily need to certify the chipset/OS and device in which the application runs. Of course the details are a little sketchy here because Visa has not tested their own application for this environment, as handset manufactures are still in flight with their designs (focused on ISIS compatibility). I believe the ISIS dynamic is also the driver of why the latest Android Nexus S had write functions disabled..

Stakeholders

In analyzing the Total Addressable Market (TAM) for any investment I always look at who are the existing stakeholders and their realative markets. Within the NFC Ecosystem I see the following:

 

MNOs have had very little experience in running a software platform ecosystem, or a payment network.. or a TSM. Closed systems usually precede open systems, and I would expect this trend to follow within NFC. The vendor most able to coordinate a value proposition which spans payments, software, mobile platform, advertising, … ? Apple. Say what you want about Apple’s penchant for control.. they are one of the few companies with the skills and experience to address all of the issues surrounding a new mobile platform.

Banks and card networks are the only group not to score in NFC because of their inability to create a new value proposition with MNOs and retailers, as such they loose.  Banks hold out hope that existing card loyalty programs hold, and consumers refuse to use payment instruments that are not currently in their pocket. History demonstrates that telecom operators have ability to sell and market cards (see AT&T Universal) to create compelling incentives…. Banks will likely begin pushing the benefits of Credit cards (Reg Z consumer protections). Will carriers respond by expanding their consumer credit risk through carrier billing initiatives (Boku, Bango, billtomobile)?

Message to banks.. stop depending on Visa and Mastercard for this.. develop your own payment network, with a unique POS integration.

Thoughts appreciated

ISIS: Moving payments from Rail to Air

Posted on by
5

9 January 2011

Previous Posts 

It’s the New Year, and thought it was time to touch on this again (last post 9/10). Quite frankly its hard to believe I’ve been writing about this for almost 18 months.. it was AT&T Newco, then Mercury now finally I have a name: ISIS, with a URL www.paywithisis.com (err… same reaction). Over the last 18 months or so I guessed wrong on the consortium around AT&T, it was not Visa, but Discover (See winners/loosers blog above) it was also all of the major US MNOs (Sprint was initially involved, but has delayed further participation).  Discover makes complete sense, as stated previously a 3 party network is the only one capable of developing a new payment type (with corresponding set of rules and fees). Visa/MA are constrained by existing agreements with card holders, issuers, acquirers. A principle example is Visa’s failure to force a “mandatory” payment type in Visa Money Transfer (VMT).

Top questions I hear today:

1) What is merchant value now that Durbin has pushed back debit to $0.12

2) Will ISIS work with Mastercard Paypass/Visa Paywave ?

3) Will Phase 1 have a mobile advertising component?

4) What are the economics for a merchant POS “upgrade”

A common basis for many of these questions is the ISIS value proposition, the entities driving it and their incentives. The high level value proposition is shown below, updated from the previous September version (prior to announcement of Barclays and Discover).

Merchants love the idea of ISIS, as much because of prospective consumer value … as the pain it will bring: Visa, MA and Amex.  As one former collegue put it: “Merchants have always loved the idea of instant credit and see value in giving customers the ability to buy regardless of the balance in their account, however merchants don’t buy into paying 1.5% of sales for a debit transactions that was $0.05 with a check”.

Historically, the card schemes have built up much ill will with merchants due to: interchange, payment system integrity, fraud controls, consumer influence, …etc.  Two major issuers inferred that Discover is a failed payment “cash back” card network. I would proffer that their “success” is just delayed, and ISIS is the initiative which will drive transaction and network growth in a model that existing schemes can’t compete with. (See American Banker Article).  I see a $200B-$600B TPV network evolving with Discover at its core. Perhaps this is why JPM is assessing a Discover acquisition.

In addition to Discover, I see 5 other entities capable of driving similar value propositions (in the US): PayPal, Amex, Citi+??, Bank of America/First Data, and Chase/Paymenttech.

From an MNO perspective the value proposition is clear (see previous blog). Payments not only supports their existing value proposition to customers, they have the distribution and incentives (airtime, data rates, discounts, advertising) to change customer behavior.

Question 1: Will ISIS take off in light of Durbin and $0.12 debit?

I interpret this as a merchant question. Certainly merchants want the lowest cost payment type used in purchase. What if merchants were “paid” to take the payment instrument? Merchant borne interchange has historically been the major source of revenue for current card products, is there a model where advertising can replace interchange? Googlization of payments?

ISIS has this potential, but will likely not execute against this element for 2-3 years as it develops the payment infrastructure and customer footprint. This may be an issue for ISIS, as merchants may take a “wait and see” approach before investing in POS terminals. This would obviously impact payment volume as merchant NFC POS terminals are just as important to a payment network as millions of NFC enabled phones. If I were Michael Abbott, I would focus on a few very large merchants and commit to a very low interchange (50bps) to drive POS economics that would then support further network expansion. Perhaps this is why we hear so little of ISIS’ merchant value proposition..

So to answer this question, YES it will still take off. I’ve spoke with 2 Fortune 50 retailers this month and they are very firmly committed to making ISIS successful. They see value extending beyond the payment cost itself. That said, there will not be a “big bang” roll out, but rather geographically focused.

Question 2: Will ISIS work with other Visa/MA?

There are many, many sub-questions here. So let’s start with some facts:

1) Discover Zip is different then ISIS NFC (see Story Here).

Geoff Iddison (MA head of mobile) is quoted in NFC times as saying “The challenge that Isis will have is to re-terminalize all of those merchants to a terminal specification which is proprietary”. This is false, ISIS is not using ZIP. They are 2 different initiatives (see ZIP pilot results). The details are best described in this American Banker Article (Jan 2011).

2) NFC and RFID are both based upon ISO 14443

For further info, see the NFC FAQ. And NFC Ecosystem.

3) Merchant POS terminals support multiple standards today

POS terminal decisions have always been independent of card issuers, except where there has been direct subsidies for a “pilot”. Today, POS terminals support multiple staandards (example:  VivoPay 8100).  Note from a scheme perspective, these POS terminals must be “certified”.

Perhaps this interoperability question should be rephrased to ask if ISIS is constructing any competitive barriers? Does ISIS have unique “standards”? Will ISIS be subsidizing merchant POS terminal? What are the “control” points for ISIS? 

The “real” barrier ISIS is constructing is NOT at the POS, but the handset. Specifically, ISIS has created a multi carrier TSM (serviced by Gemalto). For those unfamiliar with NFC ecosystems, the TSM is the entity that owns the “keys” to the secure applications within your handset. Banks want to be in the position to serve in the TSM role, a “DESIRE” best exemplified in FirstData’s TSM brochure:

Card associations believe they are excellent candidates to fulfill the TSM role, and it makes sense from their perspective. The TSM role would make it much easier for the card associations to support their member financial institutions in the issuance of new payment applications and the expansion of the number of accounts they have. In addition, they already have an infrastructure in place for supporting their card accounts.

Banks will not get this TSM role… at least not for NFC which is embedded within the handsets. In the US market, MNOs subsidize phones and already engage in a device “locking” strategy (GSM phones cannot be used with another carrier). US MNOs plan to leverage ISIS and Gemalto (as TSM) to extend this control model to the secure NFC element. In other words controlling which cards and applications can use the device’s NFC capabilities. Note that this dynamic is very “US” focused, as consumers in most other countries buy their handsets unlocked and will have a “choice” of TSM.

This ISIS TSM construct greatly concerns Visa, MA and the large issuers. In the Visa/MA model, NFC transactions are “premium” and can carry very high interchange (see BestBuy Pilot). Merchants are very reluctant to add NFC POS capability if it will increase costs. Although Retailers don’t have to worry about consumers using PayPass or PayWave in mobile phones (due to TSM constraint above), they may have to contend with NFC stickers, MicroSD cards and unlocked phones with NFC capability.

I have no visibility into ISIS, or retailer, plans here. My guess is that the large retailers (which ISIS is working with) will exclude Visa/MA NFC payment types unless there is a an agreement to match interchange. Merchants and ISIS will be emphasizing a new payments brand.. Will merchants allow an Visa PayWave transaction on the same POS? I would imagine that some will, but I would bet that ISIS launch partners will not support PayPass or PayWave. They will tell their customers “sorry … just swipe your card”.

The issuers may contend that agreements in place prohibit discrimination of NFC vs. Card Swipe (retailers beware of this point). I doubt if they will be successful with this argument, given that the merchant is not discriminating but rather accepting a new payment type in a new infrastructure (which the merchant pays for).  Durbin, also allows merchants to “steer” customers toward preferred payment types.

Question 3 – Mobile Advertising

I have limited visibility here, but it would seem this is not in scope for Phase 1 of ISIS. Michael Abbott has only been in the job for a few months, and would expect him to be the driver of plans here given his CMO role at GE Money.  One interesting tangent will be what role ISIS allows Apple iPhone to take. It is assumed that the ISIS TSM will still manage the secure element, but Apple will manage marketing. See Apple NFC Patent.

Question 4 – POS Economics.

From my perspective, this remains the biggest barrier to adoption (see Federal Reserve Study). Durbin’s reduced debit rates have made a challenging business case even more so. There is a normal refresh rate on POS infrastructure of about 4-6 years. Card networks have typically subsidized POS infrastructure within pilot geographies. It remains to be seen how ISIS will incent merchant participation beyond the marketing value proposition (above).

Summary

Most of you know the story of FedEx Founder Fred Smith, and the college term paper he wrote discussing the market for a next day package delivery service. His professor scoffed at the idea and gave him a “C”. Why would anyone want to ship goods via Air.. and there was no need for a “next day” service. Similarly with ISIS, the banks see no need for a MNO driven payment solution… after all they have all of the technology that ISIS has … and have been doing this for years. The market opportunity for ISIS is in shifting of control away from banks and card networks toward merchants and consumers to deliver a new value proposition that goes beyond payments. The mobile handset has the opportunity to be THE primary device for advertising, content and communication. Payment is only one element, but perhaps the central one as it is enables delivery and tracking of incentives necessary for effective advertising.

Will banks / networks be able to adapt their existing payment rails to the ISIS model? It sure is hard for trains to fly

Where can banks win?  Credit, Risk, Merchant Services, Consumer Preferences, Deposit, Customer Service, … etc.

Thought appreciated

Visa/BAC in Mobile Pilot

Posted on by
Reply

20 Aug 2010 (update Aug 23)

(update – Was just told that the BAC pilot is NOT using the Monitise application. Wow.. what on earth is going on with the Visa team? They have at least 5 different pilot models.. in a positive light this is market experimentation. I’ll take the blame for being premature, but given that I saw the new application and was told it was July I connected the dots… albeit incorrectly.  Bloomberg’s story above is on target and trial is a field test of the newly certified DeviceFidelity MicroSD.  Purpose is to ensure all works as planned from enrollment, activation, OTA provisioning, application usage and NFC payment ).

Visa has a number of initiatives surrounding mobile and NFC. Certainly a challenge to get multiple parties aligned to make this happen:

  • Monitise, provider of a new iPhone application
  • Device Fidelity, NFC tech provider which
  • Bank of America (pilot agreement, marketing plans, focus demographic)
  • Advertisers.. currently part of existing visa discount program
  • Apple.. certification of the Moni iPhone application (submitted in June)
  • First Data. Trusted Service Manager (TSM) in the NFC role…
  • … I could go on

This activity represents a major investment by the entire industry team.. ( given equity stakes perhaps Keiretsu is more appropriate).

More to come … this is just a quick update

Previous Posts

Paypal at the POS?

Posted on by
Reply

18 August 2010

Great WSJ Article TodayPaypal looks to real world commerce

First Draft…. final tomorrow.

As stated in my previous blogs about Apple, Bling, and the Mercury NewCo we are in the midst of a revolution in consumer payments, driven by large non banks, with new value propositions. For example, we see established organizations like AT&T, Verizon, and Discover collaborating (Mercury NewCo) with a payment value proposition driven by mobile advertising, Card networks attempting to develop PayPal killers (see Visa PayClick) and mobile handset manufactures attempting to create models for payments separate from banks (see Nokia and Apple NFC).

The worst kept secret in mobile payments today is: there aren’t any (except for MNO unbanked solutions). Efforts like Mastercard/Obopay have failed globally because they have focused on P2P (no existing volume). Alternatively, PayPal’s efforts are focused on the POS. Enabling any “merchant” to accept any card either at POS or virtually (see previous blog on PayPal’s virtual terminal). This approach is a win for banks (card acceptance), a win for consumers (convenience/loyalty), and a win for merchants (reduced merchant fees and interchange).

PayPal is best positioned of any major player to link the virtual and physical payment worlds (see here for detail): they have a consumer base, merchant base and a phenomenal fraud/risk team of 300+ with commensurate tech and ops. However their ability to execute is not without challenges. For example, what % of their current merchant base does POS transactions? Will there be a need for merchant terminals? If so who will pay? As discussed in the article above, Bling has been mentioned as a potential approach. Issuing Bling tags to PayPal’s employees is certainly a useful way of testing the consumer issues associated with issuing (and using) a payment tag.

My guess on PayPal’s “focus”?

Given PayPal’s strengths I would see a “phone as POS” approach as the most logical.  As consumers we focus on our individual accounts, but PayPal is one of the few “2 Party” payment networks (others are Discover, Amex) that also include merchant acquisition. 2 Party systems are uniquely positioned to control the costs and value proposition between the merchant and the consumer. One of the major NFC challenges is POS infrastructure: who will pay for it? The phone as POS would certainly address this Gordian Knot for small merchants. Small merchants are a group that also feels the most pain in interchange and card acceptance fees due to their lack of negotiating leverage. Oddly enough large banks seem to be supportive of PayPal’s efforts here with the view that their actions will help drive cash replacement. In other words, if PayPal’s innovation is indeed focused on NFC acquisition then they will be able to process all cards..

On the merchant side, PayPal has already completed much of the heavy lifting with its existing virtual terminal service. This service equips PayPal merchants with ability to accept any card at the POS (see Virtual Terminal blog). NFC or RFID form factors are just another abstraction for this card.  On the consumer side, I would expect to see PayPal working to link PayPal accounts to multiple form factors. Expect PayPal to make an acquisition in this space.

As of today, here is my view of the teams competing in mobile payments at POS

  • Mastercard/Citi/Obopay/Nokia
  • Visa/Monitise
  • Apple
  • AT&T/Verizon/Discover/?Google/First Data
  • PayPal/?

More to come tomorrow.

US Carriers Form New US Pre-Paid Venture

Posted on by
3

May 31

Previous Post http://tomnoyes.wordpress.com/2010/03/15/att-visa-prepaid/

Mobile Ad start ups… watch out… the big fish are coming …

It seems as if AT&T has pulled together Verizon and T-Mobile to form a new venture to focus on pre-paid. The large US Card Issuers are now aware (and quite suprised) of the move . It is doubtful that this new US entity (NewCo) will reach as far as Canada’s Enstream in mobile platform collaboration, but the focus of this initiative is mobile payment (NFC and P2P) and mobile advertising.

MNOs see a “Google like” future in mobile advertising, as they attempt to monetize their tremendous customer knowledge. For those that have ever purchased online advertising, we know that the biggest challenge in justifying spend is to move beyond “cost per click” to cost per customer acquisition or purchase. This Ad-Purchase disconnect is particularly true when purchase is made in the physical world. Mobile has the potential to bring together these two worlds, but a “key” is needed. MNOs and Banks see this “key” as a a common payment instrument available  to all customers. NewCo is therefore planning to control (issue or manage) a common pre-paid card which will serve as this transaction key and give MNOs the remaining tool necessary to coordinate focused mobile advertising.

Given that NewCo doesn’t yet have the CEO in place there is probably much left open (with respect to business plan and services). At a minimum I believe they will act as issuer, and create common services to address mobile advertising and payment.

Message for VCs and Start-Ups:

  • Assess risk of current path vs. supporting this new “collaborative” MNO ecosystem.
  • Investments “tied” to this new ecosystem will have different risk profile, particularly in navigating more complex environment.
  • Mobile advertising “pure plays” which do not touch financial transaction will be at a significant disadvantage. Ecosystems are forming based upon: Platform, Service (ie search), Network, Payment Instrument and bank.
  • Adapt.. A “dynamic” strategy which will keep your IP “in play” is necessary.
  • Winners will have the right talent that can navigate with the “big fish” and the right BOD that can help you evolve your strategy.
  • Think Global. Ecosystems will likely evolve differently globally, particularly in Asia.
  • Using financial information for advertising will touch privacy and regulatory issues. Regulated entities (Banks, MNOs, Payment Networks) are best positioned to deal with these. However, large MNOs and Banks have poor track records in “innovation” and moving collectively.

In short, it remains to be seen whether MNOs will be able to take on role as “orchestrator” of mobile advertising, or just a provider of location, reputation, authentication and transaction services.  How MNOs monetize these services will be driven as much by their ability to execute as investor expectations and competing models.