Justice League Blog

Marketing Will Kill Federated Identity on the Web

Posted On March 18, 2009 by scott

Warning: a fair amount of cynicism occurs in this post.

Some of my buddies have been exchanging ideas of what keeps us interested and one friend was thinking about how he could use a user’s Facebook login on his site. This nudge along with some work I’m doing with federated identity and Amazon SSO all have brought this federated identity stuff onto the foreground thread in my brain.

It’s all very interesting stuff and I think there’s some great technology behind all of this. I’m not worried about the technology part. It’s whether the technology can ever get implemented that worries me.

Why? Well on the internet audience and the audience demographics are the currency of the realm. If there’s federated identity, then providing all of my identity information to the relying part is redundant. There’s no way marketing is going to let THEIR site be the relying party. Marketing will want THEIR site to be the IdP. That’s because they want the users to sign up and provide all of the contact and demographic information since that’s the only business model that has been proven to work last time I checked.

I can imagine a conversation going like this:

Me: We should implement federated identity so our users don’t have to log in a gazillion times.
Marketing: Good idea.
Me: Whose identity should we use? LiveID? Amazon?
Marketing: Huh? What do you mean? Ours of course. We need the user to sign up to give us their email address.
Me: Well, we can get that. It’s part of the claim that we’ll get as part of SAML.
Marketing: Sam who? When does the user give us his email?
Me: They don’t give us the email directly. They give it to the identity provider and then…
Marketing: No, no, no, no (just like your mom used to do) – this doesn’t sound like a good idea…

So maybe all we really need is an identity selector and we’ll be the digital equivalents of the janitor with the massive key ring on our belts.

[tags]federated identity, cloud[/tags]

This entry was posted in Software Security. Bookmark the permalink.
« »
  • http://chromebits.net Kyle Maxwell

    I’d like to think that somehow marketers will start to get a clue that federated identity becomes a competitive advantage over other organizations that don’t use it. “What? I don’t have to sign up and remember ANOTHER password? Sweet, I’m using this site!”

    BTW, so when will the blog here support OpenID? :)

  • http://1raindrop.typepad.com gunnar

    all relevant points, but mostly just good ol integration friction that will get solved over time. business is more than just marketing. business’ take on a lot of risk and expense to be an Internet IdP, and most probably get little return. its better for most to simply be the SP. also nothing precludes an IdP giving the marketing people some data as well, like how Amex shares data with merchants about customer habits.

    good thing is you only need two or three players to act as IdP and then the SPs ride the light. whole foods, target, and your gas station don’t need to issue you your credit cards, but they enjoy processing the transaction and taking money out of your account and putting it in their own

  • http://telicthoughts.blogspot.com Marinus

    If they can overcome their fear of losing control it can work.

Recent Posts

Categories

Recent Comments

Download Our Media Kit