Google Secure Payment Authentication (SPA)

Read First – Blog on SPA from Checkout.com

Background Reading – June blog eCom politics and Scenarios, and Identity, Authentication and Risk

What’s the big news here? SPA allows Google to stand at par with ApplePay in providing the best-authenticated checkout experience. Google looks to have taken TWO MASSIVE pieces out of the authentication process: 1) 3DS handshake (putitting in Cryptogram and 2) A step up from the Issuer (possibly – a significant portion of this blog). This is a generational improvement and massive simplificaiton of the current 3DS flow.

The mobile platform is key to authentication and Google is the preferred partner of every bank, merchant and network. Their challenge in SPA? Doesn’t seem Checkout.com coordinated with the networks on SPA (ie liability shift OR step up). I think it will get worked out as the quality of this innovation is just fantastic.

As I wrote in June, ApplePay 2.0 plans to cross the chasm from mobile only to desktop (as announced at WWDC). Google is proving that they have the same capability, as Chrome makes up about 10-12% of eCom and over 30% of guest checkout at most retailers; they are positioned well (particularly in Android markets).

Continue reading

eCom – Politics and Scenarios

Frank Young – Contributor

What are banks talking about this week? How did Apple’s announcement impact them? While 15bps on 2% of eCom GDV is a nuisance, 15bps on 15% of eComm GDV is an earthquake. 

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

Apple Wallet “2.0” in iOS18 – What’s In It?

Winners: Consumers, Merchants, Banks, Networks and Affirm

Losers: Branded PayPal and Venmo

Apple’s WWDC is on Day 2. Today we will see significant enhancements to ApplePay and Wallet in forthcoming iOS18 (to be released this fall). Here are the highlights in order of impact. 

1 – ApplePay in eCom

ApplePay will be supported in every browser. This will be a game changer and dramatically increase payment volume flowing through Apple wallet (and their platform). Just last week, the WSJ published a great piece on why retailers hate that consumers make large purchases on their computers. Apple will expand ApplePay to support all browsers AND provide a major upgrade in experience, security and fraud. 

Continue reading

Part 1 – Identity Models, Government and Governance Structures

This is a big topic, and I’ll get a few things wrong. My mechanism for correcting my viewpoint is this blog, where this community gives feedback. It’s the reason I write. I won’t get into the tech weeds in this blog series. When there is a need to drill down on a standard or tech, I’ll provide a link to documents providing an overview. The insight I’m attempting to provide surrounds the evolution, economics and value chain implications of various models. 

Why read this? 

Identity is the key shaping force across many domains (including payments) because: 

  1. ID touches “everything”,  
  2. ID is the “primary key”  in trust, risk, contracts and value exchange 
  3. ID is core to a well-functioning government (voting, taxing, regulating, …etc).

This breadth makes it challenging to sift through ID-related announcements and assess the implications. Thus, I’ve created three identity communities for my taxonomy:

  1. Government – Working to define identity as part of Digital Public Infrastructure (DPI). DPI has three legs: identity, payments and data exchange.
  2. Commercial – Platforms, Banks, Healthcare 
  3. Web3/Blockchain/Social – Jack Dorsey is the unofficial spokesperson.

These communities find alignment in technology but are working toward different end goals with significant philosophical differences across communities, particularly regarding the role of government and near-term objectives. These differences surround the definition of trust, authority and governance structure, which is the focus of today’s blog.

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

New Blog Series – The Economic Models of Identity (and Trust)

Free Content

Happy New Year. I’m starting a new blog series in 2024 – The Economic Models of Identity. 

Identity is the #1 shaping force in new payment schemes, Web3, blockchain/crypto and more broadly “trust” interactions in government, commercial and social (see Trust Networks). Most investors haven’t spent much time thinking about identity because it was the realm of tech geeks or bundled into the services we use (see Separating Identity and Payments). The reason to pay attention today? Identity is shaping a redesign of the internet’s infrastructure AND governments are defining new LAW on what constitutes a digital identity (ex India’s UIDAI and Europe’s eIDAS/eID).

Let’s unpack the word Idenitity to ensure a consistent taxonomy. While most people relate a drivers license or passport to identity, it is much more than that. Who are you? And who can answer that question? Are you a US citizen? Licensed Driver? Doctor? Skier?  Great credit risk? While your SSN or DL# are legally issued identitiers that only the government can issue and authenticate, you are also biometrically defined and have credentials, behaviors, preferences and other attributes. Identity and the contexts in which it is used are the foundation of trust, contracts and relationships. 

Continue reading

Adios 3DS “Step up”.. Hello FIDO2

Short Blog

There are significant changes brewing in eCommerce authentication and authorization. Today’s blog is more of a headline summary of key points that I hope to break down over Thanksgiving. 

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

Paze Update – 4 Elements of the PAZE Wallet (70% confidence)

© Starpoint LLP, 2022. No part of this site, blog.starpointllp.com, may be reproduced in whole or in part in any manner without the permission of the copyright owner.

Free blog – no subscription required.

Over the last 5 yrs I’ve written 9 blogs on PAZE/SRC, and over 20 on the TCH’s 13 yr effort to own mobile payments. Today is my update and latest best guess at what they are building. This is a 70% confidence guess based upon my discussions with Merchants, Early Warning alumni, former bank execs, and previous releases (ex Authentify). 

Continue reading

Separating Payment and Identity

15 pages (summary is 4)

Follow blog from Payment Authorization – Under the Hood (ie working on a car engine), Trust Assertions – Identity will Define the Future of Payments and Role of Identity and Trust in eCommerce.

Today’s blog is one of my personal favorites, not only because of the topic but because of the leading experts in retail, identity, networks, and payments that collaborated and provided editing (thanks all). While I’m no longer the tech expert, I do have a unique view on the “inside baseball” incentives and realities of what is actually happening (behind the rules). Payments are not like a brand-new Ferrari operating to spec, they are a very messy business with complex rules, worn-out systems, unresponsive drivers and a broke racing team with no sponsor. This is a get-your-hands-dirty blog. Note that I’m open to feedback in case I’ve missed something

Outline

  1. Summary
  2. Survey of global identity initiatives
  3. How identity works in eCommerce today
  4. Technical example
  5. How identity improves CX and eCommerce payment flows
  6. Four future scenarios of identity and payments
  7. What should investors track

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

Payments and Identity – UPI continues to lead the world

Short 4 page blog

I’ve written heavily on payments, trust networks and identity. Today I’m providing an example of how UPI, powered by UIDAI’s centralized identity,  is creating a new cannon for next-generation payment networks and trust.

I believe that mobile platforms are well placed to learn their lessons in India and create a new phone based network agnostic identity platform that will drive a significant change to payments, the internet and how we manage trust with counterparties.

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

Wallets, APIs and Trust

6 Page Blog

Top of mind today are Wallets, Identity and Application Program Interfaces (APIs). APIs are the core concept behind many new business models investors must decipher:

  • Software as a Service (SaaS)
  • Payments as a Service (PaaS)
  • Banking as a Service (PaaS)
  • Open Banking – PISP, AISP, ..etc
  • Account Aggregation – FDX, Plaid, Akoya, … etc
  • Payment Service Provider (PSP) – Stripe, Adyen, PYPL/Braintree, … etc

Previously, I’ve covered this topic in Open Banking and Open Payments and Trust Networks (2020)  Part 3 – Internet 2.5 (2022), Modularity and Trust (2022) and Evolution of V/MA – Moving Beyond Cards (2021). Summary points from these previous blogs:

Continue reading