Last week’s simultaneous launches of Facebook Connect and Google Friend Connect diverted attention from an equally important launch: A major rollout of a universal login service, called RPX, from a Portland, Oregon-based startup, JanRain. The company announced that RPX is being rolled out to over 200 properties operated by Universal Music’s Interscope Geffen A&M, bringing simplified login to music group sites like Weezer, Lady Gaga, and Snoop Dogg, among many others.
Until now, JanRain has been a pureplay OpenID solution provider, hoping to build a business just on OpenID, the promising open standard for single sign-on. But the company has now added Facebook as a proprietary login choice amidst the various OpenID options on RPX, a move that shifts them into a more neutral stance, straddling the Facebook and “Open Stack” camps. In my view, that puts JanRain in the interesting and enviable position of being the “Switzerland” of the emerging online identity wars.
For site operators, RPX offers an economical way to integrate the non-core function of “login via third-party identity providers” at a time when the choices in that space are growing and evolving rapidly. So, rather than direct its own technical resources to integrating Facebook Connect and the various OpenID implementations from MySpace, Google, Yahoo, AOL, Microsoft, along with plain vanilla OpenID, a site operator can simply outsource all of those headaches to JanRain. A free version is available for small sites; large sites will typically choose the Pro version that starts at $1,000 per year and scales with the number of registered users. Having seen what it takes right now to integrate with all the latest identity offerings from my work with Joseph Smarr at Plaxo, I can imagine lots of sites finding RPX a very attractive alternative.
Lee Hammond, an executive of Interscope Geffen A&M sums it up nicely:
“It’s a double win, really. Through RPX we’re presenting the broadest range of sign-in options for users without having to chew up internal development resources to keep them current. I’m looking forward to when Microsoft rolls out OpenID because it will just ‘show-up’ without requiring additional time from our developers to support it.”
JanRain effectively becomes a middleman between destination sites and the online identity providers, offering a single, tightly integrated service that normalizes the widely varying solutions. In the process the company finds itself an aggregator of highly valuable data on market adoption trends across a large and growing number of sites and across all the identity providers.
One key question all this raises: Given a menu that includes AOL, Facebook, Google, MySpace, Yahoo, and OpenID, which brand will users choose as their preferred way to sign in to new sites? The RPX service hasn’t been out long enough to know that answer in any sort of definitive way. But, early results make it clear that the answer will differ from site to site, depending upon audience demographics. While RPX’s current user interface offers the same choices for all sites, the plan is to introduce the flexibility to tailor the options to the specific site, based on usage data. So, if your site is wildly popular with the MySpace crowd and very few people choose to login with, say, their AOL OpenID, you might choose to simplify the UI by removing the AOL-branded option. (Motivated AOL users could still pick the OpenID-branded choice and log in that way.)
For those who have wondered whether OpenID and the Open Stack could end up with a user interface and user experience to match Facebook Connect, it’s clear that RPX is a big step forward, with a clean “lightbox” UI. And for those who have wondered what sites will do when confronted with the choice of Facebook Connect or OpenID, RPX helps to remind us that sites want maximum audience and are keen on presenting whatever choices get them the most users and the best new-user onboarding. I got to see some of the data from the first few days of RPX on Universal Music sites, and the thing that struck me was that none of the identity providers accounted for a majority of logins, but that the OpenID providers in aggregate did, at just under 60%. It’s going to be really interesting to watch how all this shakes out. I look forward to seeing the data after a few weeks have passed.
For more coverage of this important story, see last week’s piece by Rick Turoczy of ReadWriteWeb.
The Real McCrea 
[…] agree with John – JanRain’s RPX service is a perfect service for right now. I’m gonna use it for this […]
great thanks for this post, we were trying to convince our clients about implementing this and your post is perfect to share with them and hopefully start implement it.
Glad to be of help. Thanks for the kind words.
[…] was reminded by this turn of events when reading John McCrea’s post As Online Identity War Breaks Out, JanRain Becomes “Switzerland” where he […]
[…] But it sure would be great if vendors started to embrace openness for the value it brings to their users, not because of some turf war or what John McCrea calls “the On-line Identity Wars”. […]
John asked which 3rd party ID providers were being used and suggested that it will vary by site. The data is now validating this hypothesis that the preferred provider and distribution among the various providers does vary significantly by site. You can see the differences for three sample websites at: http://blog.janrain.com/2009/01/why-websites-should-accept-multiple.html The implication is that website operators should accommodate as many third party identity providers that represent their members/customers/users as possible to maximize registration conversion and facilitate login.
[…] enough that there is now a market for companies who wrap both solutions in a single package like JanRain and Clickpass. I wouldn’t be surprised if Facebook has been getting an earful from some of their […]
[…] the same ID, and this has gained traction beyond these few providers. This has led us to an era of identity wars between the big […]
[…] the same ID, and this has gained traction beyond these few providers. This has led us to an era of identity wars between the big […]
[…] the same ID, and this has gained traction beyond these few providers. This has led us to an era of identity wars between the big […]
[…] the same ID, and this has gained traction beyond these few providers. This has led us to an era of identity wars between the big […]
[…] the same ID, and this has gained traction beyond these few providers. This has led us to an era of identity wars between the big […]
[…] the same ID, and this has gained traction beyond these few providers. This has led us to an era of identity wars between the big […]
[…] services with credentials from the identity provider of your choice. Which company wins in this Online Identity War will reshape the Internet. Today, Yahoo significantly upgraded its offering, with a rockin’ […]
[…] Malheureusement, pas beaucoup a changé depuis cette époque. Le fait le plus remarquable, peut-être, est le nombre croissant de services d’Identification Unique (SSO ou Single Sign-on) qui résout le premier problème pour les fournisseurs d’applications et le deuxième problème pour les utilisateurs. De nouveaux développeurs d’applications peuvent externaliser cette fonctionnalité à une tiers fournisseur d’une solution de SSO. Les plus gros fournisseurs d’applications sont eux-mêmes devenus des fournisseurs d’identités en autorisant leurs utilisateurs à s’identifier avec le même identifiant sur des applications développées par des tiers. C’est un phénomène qui s’est répandu assez vite au sein de ces quelques gros fournisseurs et qui a déclenché une véritable guerre des identités. […]
[…] Malheureusement, pas beaucoup a changé depuis cette époque. Le fait le plus remarquable, peut-être, est le nombre croissant de services d’Identification Unique (SSO ou Single Sign-on) qui résout le premier problème pour les fournisseurs d’applications et le deuxième problème pour les utilisateurs. De nouveaux développeurs d’applications peuvent externaliser cette fonctionnalité à une tiers fournisseur d’une solution de SSO. Les plus gros fournisseurs d’applications sont eux-mêmes devenus des fournisseurs d’identités en autorisant leurs utilisateurs à s’identifier avec le même identifiant sur des applications développées par des tiers. C’est un phénomène qui s’est répandu assez vite au sein de ces quelques gros fournisseurs et qui a déclenché une véritable guerre des identités. […]
It is interesting to read about the industry of SSO from 2 and half years ago. It has evolved tremendously since.