The Key Revolution (TKR) has brought together the innovations of cloud computing and 'chip and pin' security technology to create a unique answer to the problem of secure remote working and collaboration with Mobiu. The service backs up data to a secure encrypted online MobiVault; enables collaboration and file sharing in MobiRooms; and uses a SIM (chip used in mobile phones) equipped USB drive for secure two factor authentication and to provide portable applications, e.g. secure anonymous web browsing.  Mobiu is based on technology created and patented by Vodafone, with a platform hosted by NTT and powered by Sun Microsystems.

Mobiu uses the secure 'chip and pin' (Personal Identification Number) technology, which banks use to reduce online banking fraud in the UK by 67 percent during the first half of 2007.  Single factor authentication of 'username and password' has been proven time and again as inadequate; its not how many bits are devoted to encryption, it's the human link in the security chain that is weakest. 

A study by digital communications agency @www, reveals that 61% of web users use the same password for all their online accounts.  According to RSA, the need for end-users to memorize passwords results in less secure management, with 25% of respondents storing a password spreadsheet or document on the PC, 22% said they record passwords on a PDA or other handheld device and 15% keeping a paper password record in an office/workspace.  People need easy to remember passwords and those passwords often prove easy to guess or are easily found, hence the need for another factor in the authentication process.

Chip and PIN provides two-factor authentication, that is a simple easy to remember PIN and a Chip module (SIM equipped USB), only when you physically have the Chip and you enter the correct PIN can access be granted, which enables Mobiu to provide secure access to your data.  Secure and encrypted online storage and back-up with MobiVault provides virtually unlimited storage, and can only be read by the Mobiu owner of that data and those Mobiu customers authorized by the owner of that data.  Should the Mobiu be lost, data is easily recovered from the MobiVault and the Mobiu can be immediately deactivated.

The Secure Remote Working Landscape breaks down into three broad technology segments shown in this diagram.

• Browser based.  Secure remote access services that use the web browser on any PC, generally taking advantage of the SSL VPN (Secure Socket Layer Virtual Private Network) capability provided by the browser.  The main weaknesses are it requires the browser have the latest secure updates, no malware (malicious software) present, and it generally only uses single factor authentication.
• Client based.  Secure remote access applications installed on the laptop.  The main weaknesses are it requires the user to carry around a laptop, but more importantly the data is stored on the laptop, so when the laptop is stolen the company's data is at risk, and it generally relies upon single factor authentication.
• Secure USB drive based.  These are USBs with software and/or hardware modifications to enable them to securely store data, however, most rely upon single factor authentication, rather than the more secure 'chip and PIN' technology, and do not offer the supported remote working and collaboration service package provided by Mobiu.

In the US there have been approximately 217 million records stolen in the past three years through laptop theft, 2005-2008, according to Paul Stevens, Director of Policy and Advocacy with Privacy Rights Clearinghouse (a private advocacy group).  At a typical cost of $182 per record, that's nearly $40B over three years!  FBI & CSI's annual Computer Crime and Security Survey of 2006 stated that 47% of computer security professionals surveyed reported a laptop theft over the past twelve months.

It's not a matter of if; it's a matter of when one of your company's laptop will be stolen.  So Mobiu gives companies the option to either avoid carrying laptops yet still work remotely, or if they do carry laptops store company data with a secure two factor authentication USB.

"But shouldn't our suppliers be building the developer programs?" I hear some operators asking. However, infrastructure suppliers make money by selling boxes, software licenses, maintenance and support; those suppliers do not understand the end customers as well as the operator. If they do, then the operator will likely not be independent for long. There is a new category of 'Application Aggregators' that bring a menu of applications, e.g. uLocate and Useful Networks aggregate location based applications; and are dependent upon mutual service success with the operator, not selling boxes or software licenses. The bottom-line is all operators will need to combine the application eco-systems of infrastructure and handset suppliers, application aggregators and their developer communities. Only those operators in a monopoly or have resigned themselves to be a utility bit-pipe provider need not worry about such issues.

In researching application developer communities across a number of industries, reviewing with the creators and community members the successes and failures, here are some topics to consider if an operator decides to build a developer community:
 
Audience:

• Know your geeks (application developers). For many operators there are local SIs (System Integrator) and VARs (Value Add Reseller) already solving the customers' problems, this is a critical group to bring on board. This generally addresses the SMB (Small Medium Business) segment, but there are also local developers applicable to other customer segments, they're not all based in Silicon Valley or LA. And localization will become critical for an operator's long-term success against GMAY (Google, Microsoft, AOL and Yahoo!).
  
• Know your early adopters. These are generally high spending customers that will trade some of their time for exclusive access to the latest applications and have their opinions matter.  This is of great value to geeks as they lack customer access that operators can provide.

Tools and Education

• The program needs to use the latest protocols, environments and community tools. Check out Saleforce.com's Appexchange; and Orange's Widget, picture sharing and OpenID APIs. To win, an operator must educate (marketing); to educate an operator must speak (blog); to speak an operator must do/show (code examples and success case studies). The more code examples the greater the addressable pool of geeks, because less able but perhaps more innovative geeks can then "cut and paste" capabilities together.
• Do not require registration or login to educate, only have registration if the geek wants to make money. Beta programs (without a clear path to cash), NDAs and legal documents will kill any community no matter how large the operator.

Communications and Marketing

• Community communication by the operator needs to be made by Geeks, e.g. bloggers, writers; IRC (Internet Relay Chat) / wiki / forum addicts; regular conference presenters that draw a crowd; and have a track-record in writing code samples and helping others geeks.
  
• Have a "Geek Advisory Board" with expertise in the platforms, customer verticals and known to the geek community.
  
• Sell your best geeks, others will follow. Communicate success stories from the community's launch. Contextual application search to help customers find preferred/certified applications that are relevant to a customer's particular circumstance is vital.

Metrics

• Program must be aligned with the operator's overall business goals. Metrics include things such as number of new geeks, number of downloads, number of active developers, number of transactions, revenue generated from APIs.

Biz Model

• The business model must be baked into the API. Ultimately, the Telco API is just a big business development deal. If the Telco API helps geeks make money, then so does the operator.

Integration

• The application developer community should not be owned by the CTO. After building the brand and the network, the application developer community is the next most important leg of an operator's business. It must be owned by the CEO, and integrated into Marketing's processes, so the innovations get out to the customer and are effectively monetized by the operator.

The above topics may appear obvious in building an application developer community, but the challenge is getting them simultaneously implemented.  Have a look at the many developer communities being launched against these 6 topics. An operator's application developer community is not a lab's project, nor something that can be released as a Beta; it's a core business assets, on a par with brand and the network, and must be led from the top.

Ovum predicts the number of HSDPA connections will reach 16.5 million by the end of 2008 in Western Europe, thanks in part to the simplicity of plugging in a USB HSDPA modem and it just working rather than the complex configurations and reboots of a data card; as well as the simplicity and attractiveness of the pricing plans at just 15 GBP per month.  Mobile operators are now working on providing value added services on top of this mobile broadband access.  One such service is secure remote access (SRA), i.e. enabling secure access to the corporate LAN and protecting remote corporate devices (laptops and smart-phones).  SRA can add $15-$30 per device per month in ARPU (Average Revenue Per User).

What would appear at first blush to be just a matter of using IPsec (IP Security) or SSL (Secure Sockets Layer), has spawned a whole industry comprising the following groups:  

• Dedicated SRA providers such as iPass and Fiberlink providing a package of dial-up, Ethernet, WiFi and HSDPA access options bundled with a security package for the global traveler;
• Mobile operators' offers range from HSDPA and a simple connection manager, e.g. O2's Mobile Connection Manager; to complete packages of managed security and remote access, e.g. Vodafone's Secure Remote Access;
• Fixed and Mobile network operators offers similarly range from access centric to a complete managed solution across the corporate LAN as well as remote access, e.g. Orange Business Services (which is in part a resell of iPass) and BT MobileXpress;
• IT security vendors such as Symantec and Checkpoint with the unified threat management systems (both LAN, remote access and remote offices);
  
• Both local and global IT system integrators that package together solutions from the above providers; and
• The enterprise's IT department.

To expand a little more on what SRA covers: for global access it's about providing connectivity to the corporate LAN and internet through WiFi, hotel Ethernet, dial-up and mobile broadband.  On security it covers: anti-virus, firewall, anti-spyware; encryption of traffic between the PC and corporate LAN; multi-factor authentication; data protection including encryption, device control, information policy, back-up and restore; one stop connection client; policy management and control of end user behavior to meet IT policies; management reporting; central portal providing IT with improved visibility and control; all backed up with Professional Services and Help Desk.  

So which supplier will dominate?  Based on a recent enterprise survey I ran in the UK, Germany and the US it very much depends upon what the enterprise is buying.  If it's a security solution, then it will be from an IT security vendor or a managed solution from an operator or IT system integrator.  If it's remote access, then the operator (fixed and/or mobile) is the likely choice.  For secure remote access, the choice is a little more complex, and will depend more upon the type of enterprise and its situation.  For example, a large financial services enterprise, with a large IT department will have a tendency to build a solution from an IT security vendor.  Though with that said we are seeing departments within large enterprise select an operator's SRA for their team. For a SME, which has a LAN security solution, but not the remote access component, a solution from an operator will likely be their choice.

This situation puts the operator in an interesting position, it can choose to be:

• Just an access provider, which sets it on the path of being a utility;
• Find a mix of security and access that meets a segment of the enterprise, which is difficult as enterprise IT providers already bundle remote access security solutions into their unified security solutions; or
• Deliver a complete managed access and security solution, which given Verizon Business bought CyberTrust and Vodafone bought Aspective shows this is a growing focus for those operators strong in the enterprise segment.

Perhaps secure remote access will be the tipping point upon which an operator breaks-through and delivers managed services to its enterprise customers, or secede the space and focuses upon access and being a utility.

The telecom press normally focus upon consumer based services, such as MobileTV, mobile gaming, or mobile access to MySpace or Facebook.  Behind the scenes is the less glamorous but more profitable enterprise communications scene with services such as:

• Visual Voicemail: speech to text (note its recent appearance on the iPhone);
• Unified Business Communications: bringing together many communication services into a single integrated experience;
• Mobile SSL VPN (Secure Socket Layer Virtual Private Network): secure remote access for employees on the road;
• Integrated Enterprise Applications: simplifying the mobilization of multiple business applications;
• Mobile Device Management: simplifying the software and control problems on mobile phones, e.g. encryption and device lock-down; and
• Multi-National Managed Mobile Service: simplifying and lowering the cost of mobile services across multiple countries.

Looking at a couple of these services in more detail.  Visual voicemail provides the convenience of accessing voicemail using existing graphical message management user interface.  It avoids the hassle of calling and then listening to voicemail serially, enabling simple forwarding, inclusion into to-do lists, data capture into business processes, and recording and search for archiving purposes.  SpinVox provides a hosted solution with revenue share.  Most voicemail vendors have this feature, but limitations of voice recognition technology have historically limited roll-out.  Pricing of SpinVox in the UK is £3.00 ($6 USD) for 10 conversions, £5.00 ($10 USD) for 20, or £9.99 ($20 USD) for 50, with £5.00 the most popular option.  SpinVox claim 6 million people will 'experience' their service in 2007.

"Business Together", from Orange Business Services (OBS), is a unified communications solution across both fixed and mobile enterprise devices.  It provides a single interface for collaborative work within enterprises by real-time access to companies' collaborative applications, such as web, audio & videoconferencing, databases, e-mails and instant messages. The solution is available from a PC, an IP phone (Nortel i2002 and Nortel i2004) or a mobile smartphone (Blackberry 8700f, Sony Ericsson P910i, Nokia E61).  Features include 'Click to -call, -conference or -IM'; both instant (presence based) and invited multimedia collaboration, and a unified message store.  All provided as a managed service.

Providing an easy to use unified mobile experience is strategically important in meeting the threat posed by Microsoft's Office Communicator Mobile.  Orange is also launching "Business Together with Microsoft," which will use the Microsoft client.  This is a good example of strategy many operators could consider; note Orange launched the own-branded product first.  The system is hosted and starts at 15 euros per user per month ($20USD).

The Vodafone Applications Service (VAS) enables mobile users to remotely interact with their business applications (for example, Siebel, Oracle, Remedy, salesforce.com and SAP) from their BlackBerry, Pocket PC or Symbian device from just one client.  It's a hosted solution targeting the SME (Small Medium Enterprise), SOHO (Small Office Home Office) and OPB (One Person Band).  Vodafone UK launched the service in April '07.  It's relatively unique as Vodafone's competitors (Orange, O2 and BT) have not taken such an integrated and hosted solution. The VAS uses the Dexterra SmartClient that runs on Symbian, Windows Mobile (Smartphone and Pocket PC), BlackBerry and Linux devices to talk to the Dexterra Concert Platform in the Vodafone network. 

When examining the enterprise market some factors make it an early adopter of new mobile services:

• 'Fashion' is less important, enterprise can enforce handset restrictions that would generally impose significant limitations on a mass-market service;
• Higher propensity to pay, which is also reflected in being able to pay for higher performance devices; and
• Sophisticated requirements: mobile email began in business and we're starting to see it be positioned as a consumer service.

Now looking at the list and seeing what potential cross-over could exist into the consumer world.  Visual voicemail has already started with the iPhone.  Integrating all the messages, IMs, voicemails, etc into an easy to use graphical interface such as "Orange Business Together" would definitely meet an emerging market need.  As more consumers use services such as family finder, navigator, and local search, it would be nice to have an integrated experience.  Rather than jotting down addresses then entering them into the navigator application - if only all mobiles had a simple "cut and paste" function...

UC (Unified Communications) brings together the communication and data networks of an enterprise.  The Innovative Communications Alliance (ICA), led by Nortel and Microsoft, is creating the hype surrounding UC.  The purpose of this article is not to discuss UC within the enterprise, rather look at the emerging mobilization of UC and the impact it could have on mobile operators. 

North American Mobile Office revenues are predicted to reach $6-7B in 2011, their current CAGR (Compound Annual Growth Rate) is about 40%.  In Europe, Vodafone's Mobile Office service has done well with roughly 2M customers.  As 'human latency,' that is the time it takes for decisions to be made, becomes increasingly important to the performance of businesses.  Enabling employees to be easily contactable and have access to the enterprise applications and data regardless of location is becoming mission critical.

Looking at the benefits of UC mobilization for the three main actors:

• For customers, mobilizing UC helps in removing some of the communications complexity, e.g. multiple voicemail boxes, multiple messaging platforms, multiple identifies and phone numbers.  Doing a quick tally, I currently have 5 mobile numbers (a US postpaid mobile and prepaid SIMs for the UK, Singapore, UAE and France), an office number, 6 IM/VoIP accounts, and 6 email addresses that I know of.  There are simply too many choices and not enough success with today's disparate communication tools.
• For enterprises, UC helps reduce human latency, enabling employees and partners to get in contact as soon as possible to speed up decision making, improving the company's competitiveness and efficiency.
• For mobile operators: mobilizing UC is strategically important as voice becomes just another application on enterprise IP networks, so they must deliver the UC solution else risk significant voice and VAS (Value Added Service) revenue erosion.

Some of the trends impacting this emerging landscape are:

• Enterprise vendors are using the ubiquity of IP to make communications just another "application," e.g. Avaya, Cisco, IBM, Microsoft, Nortel and Oracle.   Microsoft Communicator Mobile will present a significant threat as the corporate directory, messaging, presence and potentially VoIP could be driven 'over-the-top' of the operators network.
• Ultra-mobile PCs and increasing broadband wireless speeds will make the mobile channel 'more' transparent to IP based communications.  Blurring the difference in experience between a 'phone on the go' and the 'PC in the office.'
• Existing mobile email vendors are moving into the UC and enterprise application space, e.g. RIM.  Enabling the Blackberry junkies to use the device beyond email.
• Hosted enterprise software, e.g. Salesforce.com, has achieved broad market acceptance, creating opportunities for all players to mash-up integrated enterprise solutions.

In this emerging environment what is an operator to do?  Recent enterprise market studies show they still prefer to look to the operator for mobilization solutions.  But given the size of the market and the number of innovative players all trying to leverage their incumbency in the customer's experience, the current preference may not be around for long.

• Partnering with the UC vendors is essential, even through there is a potential long-term risk of from UC vendor's handset clients, UC is going to happen within the enterprise first, and be mobilized second.  There is no option but to work with the incumbent UC vendors. 
• For converged operators with an established enterprise solution business, offering a hosted UC solution with mobilization will be attractive to a number of enterprise segments.  Though an emerging issue will be the integration of this with enterprise applications and data, that is being able to mash-up the hosted solution into the enterprises' data and processes.
• For mobile-only operators the key is to focus on having a best in class mobile solution that can work across a number of UC platforms.  For example, having the UC client and other mobilization application driven from a common user interface.
• Regardless of operator, the over-riding need is to deliver a tight integrated customer experience.  Offering and charging for separate services, e.g. presence, collaboration, messaging, email, directory, security, and enterprise integration will ensure an enterprise goes elsewhere.