KuppingerCole's Advisory stands out due to our regular communication with vendors and key clients, providing us with in-depth insight into the issues and knowledge required to address real-world challenges.
Optimize your decision-making process with the most comprehensive and up-to-date market data available.
Compare solution offerings and follow predefined best practices or adapt them to the individual requirements of your company.
Configure your individual requirements to discover the ideal solution for your business.
Meet our team of analysts and advisors who are highly skilled and experienced professionals dedicated to helping you make informed decisions and achieve your goals.
Meet our business team committed to helping you achieve success. We understand that running a business can be challenging, but with the right team in your corner, anything is possible.
Picking up on the observation at EIC 2023 by KuppingerCole Principal Analyst Martin Kuppinger about the application of Decentralized Identity to Enterprise onboarding, the panel will discuss how Decentralized Identities can augment and improve onboarding and CIAM (Customer Identity and Access Management) processes, and how enterprises can develop the capability to utilize decentralized customer identities and data.
The panel will also consider the potential for emerging technologies like Digital Identity Wallets and Decentralized Web Nodes to enable next-generation customer experiences, and why open standards hold the key to unlocking this.
Picking up on the observation at EIC 2023 by KuppingerCole Principal Analyst Martin Kuppinger about the application of Decentralized Identity to Enterprise onboarding, the panel will discuss how Decentralized Identities can augment and improve onboarding and CIAM (Customer Identity and Access Management) processes, and how enterprises can develop the capability to utilize decentralized customer identities and data.
The panel will also consider the potential for emerging technologies like Digital Identity Wallets and Decentralized Web Nodes to enable next-generation customer experiences, and why open standards hold the key to unlocking this.
All right, so I think people have met me by now. I won't bore you. Can everybody just say a word about who you are, where you come from, and what your relation is to the subject?
Sure, no problem. Hi, Rob Otto Emir Field CTO at Ping Identity. My relation to the subject, oh, there we go. Welcome is that I, I absolutely love customer experience. I absolutely love Siam and really excited about the opportunities that we have through digital wallet's, decentralized identity to really improve that experience. Cool. Alright. Hi everyone. My name's Nick Lambert. I'm the CEO of Doc Labs. We've built and run a verifiable credential issuance and verification platform and we work with customers in kinda KYC background check biometric space.
Personally, I've been in the density space for about five years, but really interested in kind of privacy focused technol technology solutions for about 10 years. Great.
Hi, nice to meet you all. My name is Ric.
I am with, jointly with my sisters and my family part of a s team. We are the leading European cloud identity management solution, mainly focusing on customer identity access management. So we do everything around authentication, concept management, B2B delegation as we've seen and more We'll have to share. Sorry.
Hello, I'm Roger. I'm one of the co-founders of their id and we are also champagne salesman. We're outside with the champagne and we are the integrator of all wallets as a SaaS solution for platforms that don't want to integrate and aggregate ID wallets and ID apps.
Hello, my name is Nick Price. I am a travel technologist. I've been working in travel for travel and hospitality for 25 years. I do that professionally in my spare time I am the co-chair of the hospitality and travel special interest group at the Decentralized Identity Foundation and it's the diff h and TIG that I'm here to represent today. Fantastic. Thank you for doing all the introductions.
We are, we have multiple defined nicks here, so I'll have to be really clear. So please enter your questions into the app if you have any, and we'll try and get those. But I have some questions for you all. The first one is identity verification has sort of come into the spotlight as really kind of a sore spot for I am for Siam in recent times because of poor experiences. Tell me a little bit about how your, your perspective on identity verification, its importance, its its uses and what really has been going wrong today.
Okay, let, let me start.
So I, I think where, where we are with identity verification is that it's tends to be a, a very high assurance way of onboarding and authenticating a user, but it's also tends to be a very high friction way of, of doing so the complexities in the backend, I guess around all of the, the things that you need to do around taking selfies and making sure that they're live and, you know, taking a picture of a photo of a passport or an ID document and making sure that the lighting is right and extracting all the right information, all of that, it's a, it's a pretty complicated process and it's, it's not a process that always translates well into a, a sort of a good and a quick user experience.
I think, and again, not to sort of jump too too quickly to the conclusion here, but knowing what, knowing what this panel is about, I think that one of the, the sort of real benefits we are, we are hoping to get from using wallets is to, is to really try and cut down on the number of times that users have to go through that very sort of friction full process and being able to reuse that, that sort of level of KYC across different, different relying parties across different verifies.
I'd probably also add like from a, you know, that's true from a user perspective but also from a organizational perspective, centrally holding all that data obviously is a challenge. You know, it's a honeypot for adversaries to, to come and obviously target and, and then sell. And of course there's all the compliance risk that comes with storing that centrally held data as well. So obviously GDPR in, in Europe and also CCP in the us And so all these companies that certainly we speak to are very, very keen to get that liability away.
And again, like Rob was saying, potentially putting that over to the user is a win-win situation potentially. But again, I don't wanna draw conclusions too early, but I, I wanna kind of just jump over to Nick Rice because you're in hospitality and coming to Europe, it used to be, you always have to show your passport and I once spoke with a, you know, a, a large hotel customer who was stressing about how to store that passport information. So is is that still a thing?
Yeah, it is still a thing and there's many countries in Europe that do require passports validation or identity validation and point of entry. Very few do it and even fewer do it well and you know, sort of holding a passport at arm's length and just saying, yeah, you kind of look like that person over there, you're good, you're good to go is not good enough. And so it's a real risk and certainly the technology at in play here helps dramatically promises a substantial improvement.
So maybe one of the, the sore spots of the current system is all of those service providers storing the information that they're getting and of course it's high quality and that seems to be a risk. Yeah, Yeah, I think what we always miss, it's back to the user experience topic. We always think about how can we do the ID verification, how, what's the technical capabilities, but we also always need to focus on the business case. So if you take the hospitality, I I maybe need to story pass per by it. I might not need to show it while I check in.
So if I do the online check in earlier, the same is for the car rental. So if I do a car rental, why do I need to show the driver license? Maybe when I just rent the car, maybe I booked it already and I can do it during the booking process, do the driver license check. So I think we often lack including the business case and therefore we do the customer journey or the user journey in general, not as good as it's possible. I think that's one issue. All right. If no other thoughts on that, maybe we can just move to the next one and everyone can certainly participate, you know.
Yeah, okay. Go, go.
Yeah, no, I'm sure. Yeah, no, but that's very interesting one. So there is legislation coming up in Europe and that will not allow to keep a passport copy.
So, and we, our company usually works for organizations that have to work in regulated markets and I think tourism is gonna be one of them because even in tourism there will be the cost of no compliance and the as as you can, yeah. I think that wallets will help a lot in regulators markets to, to assure that you are compliant. Cool. Yeah.
Yeah, I was, I think it's, it is not just for compliance, it's the fact that you come in with your passport and then immediately after you scan it, the hotel says, have you ever stayed here before and you stayed there 20 or 30 times. So hotels travel has a very, very, very large number of customers on file and very, very, very low action quality and actionable customer information. So this reusability and Rob, you, you went there, you brought it up first is it seems like it's more pointed and more valuable for any kind of verification, onboarding, registration than for routine authentication.
Is that, could that be true? Well, Yeah, and I mean, I think at, at, at the risk of being sort of slightly controversial to, to do it to the others on the, on the panel here, when we start to talk about decentralized, we start to talk about wallet based credentials. I always shy away from the privacy argument as the reason for doing it. Now I understand that there are governments that legislate for privacy and I think that's probably a good thing for governments to be doing, speaking to consumers. Very few of them actually care about it. Right.
I think from the perspective of consumers, what they, what they really want is that value exchange in terms of when I give you data, do something useful with it exactly as you said there, Nick. Use it as a way to, to improve my experience.
And, and this is the thing that I, I find really exciting about this because you don't need decentralized identity to figure out that you're coming to the same hotel for the 30th time. You just need to have a system that's not stupid, right? But you know, all of the obstacles to getting that good quality customer data onboard, the obstacles to customers wanting to provide that or finding an easy way to provide that, I think is what's actually stopping people giving them that, that good experience.
So 15 years ago, 20 years ago, it was common to put on a slide, well people are filling out this web form and that's kind of a pain and that's why we need federation. Where are we at now and where's the, what does the new solution look like?
Yeah, I mean I think to to Rob's point as well, I, I think that privacy is something that people often say they do care about, but then the practicality is that they'll only do it if it's really uber convenient for them to do so. Even like using another web browser or something, it seems to be too troublesome, but I think you can still provide that privacy. I genuinely do think people want it, but I think it's incumbent upon us to package it in such a way where they do get that privacy and also they can provide that control because really they do want the control.
And we've talked about that today. If you're providing information to hiring a car or checking into a hotel, you only want to provide them with the information that they require to get through that process. So I'd maybe slightly disagree with Rob on, on the privacy thing, but I gave you some some contentious stuff so I know you're looking for that.
Yeah, I would say in particular in that aspect, that's in particular the point. So the, the hotel or the car provider needs to know the user is verified or have the verification status, but it doesn't need to keep the copy of the, of the passport or anything because it just have the need to have a trusted source to know, okay, this, this is verified user, the driver license check is verified, age check, whatever it is required is checked. But I do not need to know all the details of the passport.
I don't do not need to have a copy of the passport or the, the video data or whatever is utilized. I just need to have the status or as part of the user data to status. And some more details may be on that, on that. Your thoughts there.
Yeah, Yeah. I mean it's a little bit, it's two worlds. So you have the regulatory part that says you need to do this and then you have the marketing part and one of them is something that you need to do. And of course in both needs to give consent and digital wallets are very good in three things. Authentication disclosures and digital signatures. And that's the good part that you can have one flow where you can do everything, but then there's always a second part. And the second part is marketing. And that's about exactly what you said.
Like, oh yeah, but is there somebody coming to the, to the hotel and you can tell 'em, oh, well you're a valued customer and you've been in 30 times, but in very a lot of cases it's just not necessary to to to, it's necessary to do data minimization. So this is always the tension.
Yeah, but it's more than just passports, right? It's more than just Id travel is is not about a just the transaction or just the crossing border. It's about this is me, this is what I want, this is who I am. So I'm a vegetarian, I like a high floor, I want a an aisle seat. I don't eat meat.
I, my favorite color is whatever, you know, this is what actually makes travel and hospitality work and what and what it is. And we need that information. The customer, the traveler wants to give us the, that information, but they don't have the tools to do it.
Sorry, if, can I, can I just add one one thing to that Right. Which I, I feel very strongly about, right? I travel a lot as well. There are days when I walk through the airport and I'm feeling on top of the world and I want to high five everybody I walk past and be the most outgoing, extroverted person in the world. There are other days where somebody comes near me, I'm gonna kill them, right? I want to be able to signal that.
I want, I want the check in staff to know that this is how I'm feeling today and I don't actually want you, you to greet exactly. Just context. Well I'm, I'm imagining a credential that says, you know, introvert or extrovert right now. It's kind of what would be useful.
We're, we're gonna run out of time here. Are there, are there questions from the audience? Yes. Yay. Awesome. Bring 'em up. Discussion.
Yeah, let's just keep Going. And actually, yeah, there's a, a question that came in that was fitting just perfectly with the direction this conversation was going and I thought I'd ask on behalf of one of our audience members, all identity apps have different credentials. How do I know what credentials to use for my Siam use case fitting in here? How can I signal this exactly? Is it only determined by the organization? Can it come from the other side in all of these different permutations?
I Wonder, I wonder if you need to define credential because you know, in the before time credential usually meant your authentication credential that was associated with an account. And in the decentralized world, a credential takes on a a kind of a new meaning, which you guys can certainly elucidate on. And in travel and hospitality they might be self attested and they most likely will be for a lot of the valuable information that makes travel work. And I was gonna say, you know, certainly travel and hospitality and many of us have traveled here.
We, we are frequent travelers. We understand all of your modalities that you've got Rob, but like retail writ large and actually any kind of consumer interaction with services out there, it's full of instances where we wanna be known where enough to get what we want when we're in a good, good enough mood for it. It seems so even more So when we're on a good mood, Right?
Yeah, we, yeah, we want that meta, meta credential that's like, stay away from me, I'm toxic right now. So like are there examples in the world today of where the, the decentralized model is sort of being deployed and being used? What I'm aware of just because Are we only talking about travel?
No, well no, no, no. I, it's funny we've gone down a travel track which is very evocative but no, no, any, any vertical will do. I was just thinking yeah, there's one I'm like in Siam use case just because of, you can tell from accent I'm from Scotland.
So there, there's actually a large Siam specialist in, in Edinburgh called kta. I actually think they're speaking tomorrow and they actually have this in practice. So they're basically eating their own dog food. And so they have adapted and started using credentials to enable staff to actually enter their offices using these credentials.
I'm guessing they're just using an app on their phone to create a QR code and scanning in and they're also using that, that same technology to be able to access systems remotely and to enable their kind of teams to track their, their movement through their systems. So there are examples of this, but I would say they're scant because there's lots of, like we talked about and Rob mentioned at the start, there are problems with integrating this technology with legacy systems. So these are not like, from what I can see commonly spread.
So, so there, there are a few examples but not many. Well, what we do as a company is that we connect decentralized identity. It's an open ID and, and zero protocols, which most every system can talk to. So we solved that chicken and egg problem with decentralized identity and Lexi systems and we in, in Holland we have quite a mature decentralized identity ecosystem where banks and even municipalities can, you can use decentralized identity for authentication.
You can use it for, to do onboard if from businesses to accountants to insurance companies where you can ask for your insurance history. It's in Holland it's already underway. And I think that it depends really on the, on on different use cases. So while in, in certain use cases, it's already quite spread In our use case it's still difficult. I think that's an issue what the consumers face, they don't know what to use.
So it's, it's basically the same, same issue what we have today. So if they just sign up to the onboarding themselves, it's easy, but which wallet is it what I should use? Do I have ten, twenty, thirty wallets finally on my smartphone? So that's hard for the consumers to download the wallet just for one use case and another one for another use case. So I think that's something which needs to emerge in the next year that there a really bigger use case is emerging.
So just 'cause we have a couple, one minute left, maybe just a quick summary there about, you know, there's legacy and then there's kind of a proliferation of the newer tools that need to work together and we're not sure how yet, and Rob I'll give You no sorry. We've in, in Holland we solved, solved that. Okay. By putting a service provider between wallets and platforms that has a multi wallet selector and multi credential selector.
Okay, so that's Sort of a broker approach. Yeah.
Yeah, that's, that's the approach we have now in the Netherlands. Okay, good to know.
Rob, any questions? Comment here. I mean to scale that up a little bit, there are others who have sold it to, what I would say is, you know, let's always focus on the simplicity of the user experience. Let's make sure that we bring users along with us as we do these things. And I think evolution rather than revolution, it's gonna be a journey towards a world where maybe everything one day is decentralized and wallet based, but we've gotta start somewhere and we've gotta get, get the cars on the road towards the destination. Okay. Three words from anybody for Li lightning round. Go for it.
So practical experience, mega project Middle East building a seamless travel business, decentralized identity journey for the visitor across multiple dissimilar travel providers, airport, airline, ground transport, hotels, down into the tourism and experience world and back again. Okay. Good aspiration. I still have 50 bottles of champagne I have to finish in two hours. You're more than welcome to talk about what we do in, in, in a few minutes. Thank You.
I would say that to finding someone up user experience is one of the key things we need to convince the the consumers because only if they join us in that journey it'll work. If we decide ourselves what we want to do and no one uses it, it will not be.
Yeah, and final point for me, I think it was mentioned a couple times yesterday is it needs to be, the user experience needs to be at least as good as or better than what people have today. And if it's not like it's not gonna be adopted. So that's has to be the focus. Yeah. Andy Tobin was saying, you know, it has to be, he saw Apple and Google Interoperating and it has to be better than that. So that's a big challenge. UX is king.
Yeah, exactly. Yeah. I'm hearing you clearly. Thank you all. Thank you. Thank you.