Author Archives: InsidePmts

EMVCo and DPCs

Posted on by
Reply

This should be a 20 page blog… but I don’t have time this week. Big picture thoughts

The April 28, 2026 announcement of Google’s donation of the Agent Payments Protocol (AP2) to the FIDO Alliance signals Google’s desire to move payments from the legacy Device Primary Account Number (DPAN) model to the Digital Payment Credential (DPC) mandate framework. For identity and payment experts, this shift represents more than a technical update; it is an effort to commoditize the proprietary trust moats built by card networks and Apple through a standardized, platform-agnostic infrastructure.

© Starpoint LLP, 2026. No part of this site, blog.starpointllp.com, may be reproduced or retransmitted, in whole or in part, in any manner without the permission of the copyright owner. Also, see our Legal/Disclaimer(this is a highly opinionated and partially informed blog). Enterprise readers, please consider an Enterprise Subscription(not required for Starpoint Clients).

Continue reading

AP2 Donation to FIDO 

Posted on by
Reply

Yesterday Google donated AP2 to the FIDO Alliance , let me share my thoughts on what this means.  

  1. Effort to drive cross-industry standardization and extend Google’s established success within the FIDO ecosystem (log in with Google) while addressing the structural limitations of FIDO.

  2. A “tipping point” transition from “Identity as a Service” to “Identity as an Infrastructure,” where the mobile handset functions as the primary root of trust for autonomous commerce. Google is telling FIDO that they must incorporate elements of W3C VCs to have a future.

  3. Google’s first big public move toward device bound credentials (Titan M2, Anroid Credential Manager, Android Ready Alliance, …etc).

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

Federated Models Need Measurement

Posted on by
Reply

A follow on blog to my Intent data post yesterday. Where intent is needed for authorization, measurement is needed by every “specialist” participating in an agentic interaction. As background I was founder/CEO of Commerce Signals, focused on measurement and card transaction data. Measurement is a powerful business. In fact, I would say Google started out as a measurement company with the PageRank algorithm. By keeping track of what users clicked on which link for which search word, they created the directory of the internet. Let’s dig a little deeper into why measurement is key in agentic, and for all federated models.

Google is not building a monolithic “central brain” to disintermediate the ecosystem. Instead, as discussed in my UCP Blog (also see Ask Macy’s Case Study), they are fostering a world of specialist collaborative models that interact across three specific technical layers:

Continue reading

Agentic – Intent and the New “Data Games’

Posted on by
Reply

While the industry recognizes that agentic commerce is reshaping payments, the more immediate technical friction lies in how it re-engineers data sharing. We are moving past the “top-of-funnel” coordination of inventory and pricing seen in protocols like UCP/MCP, entering the more contentious territory of AP2/ACP to coordinate trust and payment.

The Collaboration Paradox

As I’ve noted in Strategic Innovation Era, we are seeing a “Retailer First” surge. Successes like Walmart’s Sparky and Amazon’s Rufus prove that retailers are intent on controlling their own data and checkout environments.

However, external collaboration is mandatory for scale. I remain a proponent of Google’s approach: rather than a monolithic LLM, they are building a world of specialist model partnerships. But collaboration requires data exchange—the primary point of friction in this stage of strategic innovation.

Continue reading

FIncen/OFAC 303 Page Rule Squashes Stablecoin eCom Ambitions

Posted on by
Reply

Exec Summary

  • New 303 Page FINCEN/OFAC Rule, aligns to the clear language of the Genius act, but IMHO will create major friction for use of USD stablecoins in eCommerce

  • Rules for tracking parties and monitoring secondary activity create a compliance regime that burdens every party with the need to understand the provenance of a coin. Can you imagine accepting $2000 for a new TV, shipping it out, then having your stablecoins burned?

  • So not only do we have KYC but we have SAR reporting requirements as PPSIs must also comply with SAR and the “Travel Rule” (31 CFR 1010.410(f)), which involves collecting and transmitting information about the originators and beneficiaries of funds transmittal.

  • Banks and Stablecoin Issuers that jumpted into Solana’s Token-2022 model saw this coming and are well placed to move forward

  • This creates substantial advantages for banks in sweeping coins into covered accounts and freshly minting new coins when required. 

  • Great news for Big Banks and V/MA. card gain signficant advantage over stablecoins with the proposed rule

  • I see this as tailwind for stablecoins in settlement, but a big headwind for stablecoin in eCommerce (with a few exceptions). 

  • My views on Stablecoin winners and losers remain unchanged except for an update to winners for x402.

  • No wonder Jamie Dimon remains confident that the banks will win, it will take years for stablecoin startups to build the regulatory muscle required to manage 303 pages of FinCEN mandates. By the time they do, the banks will already be running their own stablecoin subsidiaries under the very same rules.

The Rule

The U.S. Treasury’s Financial Crimes Enforcement Network (FinCEN) and OFAC issued a 303-page proposed rule implementing the GENIUS Act, reclassifying permitted payment stablecoin issuers (PPSIs) as financial institutions under the Bank Secrecy Act. Requirements include bank-grade KYC, suspicious activity reporting, transaction blocking/freezing capabilities, and appointment of a U.S.-based compliance officer. Enforcement begins January 2027. A 60-day comment period opens now.

The NPRM (Notice of Proposed Rulemaking) introduces 31 CFR Part 1033, which specifically outlines the obligations of PPSIs. The density of this document reflects the complexity of applying traditional banking rules to a distributed ledger environment.

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

Wero 2026: Sovereignty at a Commercial Premium

Posted on by
Reply

Just left a UBS webinar from the head of product for Wero and thought it would be a good time to update my July 2025 assessment of Wero as a “solution in search of a problem,”. The biggest change in Wero is the core infrastructure has transitioned from a voluntary service to a mandated utility. However, as the European Payments Initiative (EPI) attempts to scale, the project faces a fundamental conflict between political objectives and commercial unit economics.

You need to be logged in to view the rest of the content. Please . Not a Member? Join Us

Owning Your Bot’s Actions: Target Part 2

Posted on by
Reply

In my previous post, covering Target’s “Your Bot is Your Responsibility”  was the only move they could make. When you let an AI bot loose with your credit card, you are effectively handing your car keys to a teenager; you can’t act surprised when there’s a dent in the bumper. But Target’s stance isn’t just a legal shield; it is a flare gun fired over a massive Governance Gap. Today’s agentic commerce is high on technology and standards, but dangerously low on the commercial terms that actually make markets function. To be clear, it’s not for lack of effort from V/MA, nor is it technology; it is resistance to change.

Continue reading

Distributed Ledger Governance

Posted on by
Reply

Long Blog – Explaining Visa, Canton, and the Architecture of Super Validators

Executive Summary

  • Stablecoin Industrialization: DLT is transforming settlement and interbank networks. There is more than one approach, ranging from closed networks to open on-chain. We discuss differences between Ethereum, JPM Kinexys and Canton Network.
  • Governance as a Catalyst: Governance and operational oversight have surpassed technical specifications as the primary factors driving institutional participation in distributed ledgers.
  • Visa’s “Super Validator” Role: Visa expands their network governance role into Canton as a Super Validator, applying its established “network of networks” model and operational rigor to a privacy-preserving institutional infrastructure. Trust requires a commercial construct and Visa has it.
  • Canton’s Privacy Architecture: Unlike public chains, Canton uses a “proof-of-stakeholder” model where transaction data is encrypted and distributed only to parties with a “need-to-know”.
  • Super Validators Explained: Visa provides services to manage the “Global Synchronizer,” providing secure sequencing and atomic settlement across domains without ever decrypting sensitive transaction payloads.
  • Transition from Silos: The native deployment of JPM Coin onto the Canton Network signals a definitive shift from closed “digital silos” to an interoperable, institutional-grade ecosystem.
  • Solving the Interoperability Paradox: The Super Validator model addresses the “SWIFT challenge” by allowing banks to maintain private ledgers while enabling the universal connectivity required for global trade. Yes there will still be closed networks, but Canton is shaping up to be the best universal bank network.
Continue reading

Explaining the Death of OpenAI’s Instant Checkout

Posted on by
Reply

Short Blog

To my regular readers, you know the flow of data within a network is complex (see Data Games). The news that OpenAI is effectively shelving its “Instant Checkout” initiative in favor of a referral-based “conversational commerce” model shouldn’t come as a surprise. While the tech press might frame this as a strategic pivot, those of us in the eCommerce trenches know it for what it is: a collision with merchant’s role in risk, costs, CX, control and their own AI dreams.

OpenAI attempted to solve its monetization problem by trying to seize control of the top of the funnel, betting that the sheer volume of consumer demand would force merchants to bow to their interface. They were wrong. They fundamentally miscalculated the power dynamics of the transaction and the complexity of the global conversion funnel, a funnel that Google understands intimately because they serve both ends of it globally (ie merchant partners).

Continue reading