Share this page!

Patrick McKenzie Profile picture
Twitter logo
15 Jun, 13 tweets, 3 min read
Continuing with our launches this month, Stripe Identity.

When I was first exposed to the Internet in the late 90s, it was an open question whether we'd ever come up with a way to demonstrate identity over the Internet.
Every business transacting online ends up building this, as a primitive. Almost every implementation is wrong. (Just zooming in on names: I still wonder whether any system anywhere handles names correctly, 10 years after writing about that.)

And we muddle along. But why?
This is a field where the topic benefits both from domain expertise but, even more, from a network advantage. Assuming a customer *wants* to tell a business "Yes, this is really me, trust me", it is in their interest to be able to pull in experiences w/ other businesses.
That largely doesn't happen in the status quo, partially because it requires cooperation between businesses which are not fundamentally in the identity business, and partially because previous attempts at solving identity at economywide scale (e.g. credit reporting) are... yeah.
So how is Stripe Identity different?

One, we're built in an era which has cell phone cameras and not fax machines as the primary way of transmitting pixel-based data, and we can take advantage of that in designing the UX. It's fast and easy (doesn't cost conversions).
Two, we've got a more modern understanding of privacy baked into it from the ground up.

The user has a very clear understanding of what is being shared, and a business can rely on e.g. their history with other businesses *without learning about those relationships.*
(This also helps to firewall businesses away from information they'd rather not have. Many companies have asked to see my passport at some time or another. Very few *actually want* a copy of it; that is just asking to get leaked later. Identity helps them implement verify/forget)
Three, taking advantage of the network effects of the Internet economy lets you use much more tailored levels of friction depending on business requirements, perceived level of risk, and acceptable impact on conversion.

This lets you create a sliding scale of certainty.
You can imagine, for example, that many businesses told "I'm patio11" care primarily "I really just need to know that this is a unique-ish human not the 1,500th alter ego of a bad actor; I'm pretty ambivalent to who it is."

And for them, minimal user interaction might be fine.
An e-commerce company might want to verify my shipping address (to minimize ops problems) but not want to take the conversion hit associated with scanning an ID, so a certainty score about it helps them do that and maybe kick anomalies to a second verification or to staff.
And then an insurance provider might say "Sorry, hard Compliance requirement, we *have* to see a government-issued ID from this list and we have to log the fact that we saw it and the following bits of information from the ID."

Stripe Identity gives building blocks for all 3.
This is, as you'd imagine, a problem Stripe has spent an awful lot of work on internally (and continues to do so).

Users get to benefit from our ability to hit edge cases before they do. And boy oh boy, do we get a brisk tour of the global economy.
Do you want to design an identity verification flow which will handle the owner of a Japanese LLC doing business in the U.S.? We already had to do that; freeride on our work.

(I am probably not the only Stripe customer with that fact pattern.)

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Patrick McKenzie

Patrick McKenzie Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @patio11

Patrick McKenzie Profile picture
15 Jun
It was once observed to me that there are some communities where people who know each other only as avatars would quote take a bullet for endquote each other, and while that is probably a level one does not need to model for an API response, allowing high-trust spaces is powerful
In some ways the future is here but not evenly distributed; you can model, for example, companies as being notably high mutual trust islands in a sea of (presumably!) lower mutual trust relationships.

Which implies something about e.g. their Slack channels.
And on that spectrum / within that dimensional space there are likely forms of trust which exist but which we can’t conveniently see or reason about right now, and who knows, perhaps forms of trust that do not yet exist but should.
Read 11 tweets
Patrick McKenzie Profile picture
15 Jun
The trouble with pegs is that they don’t stay pegged. If they stayed pegged they wouldn’t be pegs.
“What do we do with this dollar substitute?”
“Is it a dollar?”
“No. It is critically not a dollar.”
“So what is it?”
“I hope it is as close to a dollar as anything in the world can be without being a dollar.”
“So it is worth a dollar in all circumstances?”
“No. Not that dumb.”
“So when is it worth a dollar?”
“Almost all of the time.”
“Can you drill into *almost* a bit?”
“I’d prefer not to.”
“Have you considered the thing you think is not a dollar may in fact be similar to most members of the set ‘Things that are not a dollar.’”
“Not ideal.”
“And?”
Read 4 tweets
Patrick McKenzie Profile picture
14 Jun
This is both profound, operationalizable, and repeatedly true to my experience.

A micro-example which played out over a decade+: substantially all of the changes in video game monetization were doing staggering billions of USD in volume in China/Korea while US industry slept.
I spent 2004 through 2010 or so saying on Slashdot and then HN "Hey guys, this is *inevitable*; solves piracy in a nanosecond and will drive up monetization from whales" while exec after exec after exec said "Americans will never go for microtransactions."
And you can still use the same cheat code!

QR code payments are going to be a dominant payment method for in-person small ticket retail payments in the US by 2025.
Read 6 tweets
Patrick McKenzie Profile picture
10 Jun
One defining characteristic of fraud, which is a primary way by which they are detected, is that they make assertions about their actions but those actions do not cause the ripples in the world that a legitimate business would.

This is checkable, often surprisingly easily.
I’m still annoyed how long Mt. Gox was given grace by the financial press, among others, due to assertions about the Japanese banking system that could have been cleared up with a two minute phone call to any of several hundred thousand people.
“We can’t send wires because we DDOSed the wire department at Mizuho.”
“... The second largest bank in Japan?”
“Yes that Mizuho.”
“So if I were to call Mizuho and ask ‘Can I send a wire?’ the answer is ‘Not until the Magic The Gathering Online Exchange gets done with theirs’?!?”
Read 5 tweets
Patrick McKenzie Profile picture
10 Jun
An interesting thing that comes up a lot in conversations with end users in payments: some folks feel much more comfortable with push payments or other mechanisms which are structurally guaranteed to be one-time unless user acts to put more money into a relationship.
In the U.S. this is often associated with lower socioeconomic status; in Japan it's often folks across the spectrum who don't want to give credit card number because they believe that it will either leak or be repeatedly charged in a way which is against their expectations.
(This is one reason why Japan continues to have a huge share of e-commerce conducted via convenience store payments. You're guaranteed to not pay more than what was on the invoice unless you walk down to conbini and hand cashier more cash (after another invoice).)
Read 5 tweets
Patrick McKenzie Profile picture
9 Jun
NFTs are one of the class of startup ideas which contain an implicit better business, because a hypothetical commercially useful NFT combines a slow database that nobody really needs with an immensely valuable working DRM system, which many billions depend on.
Some of those other startup ideas are not primarily investment scams.
One of the classics is Shopify, where to sell snowboards over the Internet you have to first have a halfway decent e-commerce platform, and after you have written a halfway decent e-commerce platform, snowboards are a silly thing to spend your time on.
Read 6 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!

Like this author's thread?

Get emails when @patio11 has new unrolls!

Check out other threads from @patio11!

Read all threads by @patio11

:(