Meet ZenKey: Telcos' Doomed Single Sign-On Service
The nation's four big wireless network operators are planning to unveil ZenKey, a password-saving service, at this month's big Mobile World Congress Americas trade show in Los Angeles. From the looks of things, it's poised to be the next Isis.
No, I don't mean it will be the next Iraqi terrorist organization. I mean it's a big joint venture among the nation's wireless network operators that's almost definitely going to fail, like the mobile payments joint venture among Sprint, AT&T, T-Mobile and Verizon that launched under the unfortunate brand "Isis" in 2010. Isis, by the way, rebranded itself as "Softcard" in 2014 -- right before Google purchased it and folded it into its Google Wallet service (which is now called Google Pay).
There's a good chance ZenKey will follow a similar trajectory. In fact, it's already traveled through several different names like Isis/Softcard/Google Wallet/Google Pay did. It initially sprung from the GSMA's "Mobile Connect" program for digital authentication and was called the "Mobile Authentication Taskforce" in 2017 before the operators rebranded it into "Project Verify" earlier this year. And now, just a few months later, it's called ZenKey.
However, it looks like it's only a year behind schedule (it was initially supposed to launch in 2018) so there's that.
On the plus side, ZenKey is attempting to solve an actual problem: too many passwords. Basically what the four big US wireless network operators want is for Amazon, Dropbox, Spotify, Netflix and other online services to use ZenKey instead of their own login and password systems. From a customer standpoint that would be nice -- you wouldn't have to remember a hundred different passwords -- and the mobile operators argue it's more secure because they have data on your location and your phone's SIM card (which is not creepy at all). But I have my doubts that companies like Spotify will use ZenKey because, as any publisher can tell you, you should never trust your subscriber database to a third party. Have I mentioned that you should sign up for Light Reading's newsletters with your email address and password?
That said, ZenKey is going to go up against some absolute giants in the space like Google and Facebook, which have been offering their own "single sign-on" (SSO) services for years (that's why you can click on the "sign in with Facebook" button on websites like Pinterest). And it's also going to have to compete with new entrants like Apple, which recently announced its own "sign in with Apple" service.
Let's see... Should I sign in with a service I've never heard of (ZenKey) or one that has made customer privacy a cornerstone of its business? (I'm talking about Apple here, by the way, not Facebook, which has made selling customers' information a cornerstone of its business.)
If history is any indication (think Isis, or SMS or app stores or streaming music, the list goes on) there's a good chance ZenKey is eventually going to be consumed, or subsumed by FANG (Facebook, Apple, Netflix, Google -- meaning, the world's big Internet companies). The only real question is when and how.