HaaS / Hostage As A Service Explained In-Depth

This is a great and amazing article. Keep up the great work.

A good follow up article would be what cloud solutions are HaaS and which ones aren't. This would include any product that has a monthly/annual cloud fee to access the products.

For example Lenel has their new Elements cloud service. If you quit paying for the service then at least all of your equipment is still usable on a different software platform other than their gateway.

If you have openpath and you quit paying then you lose the ability to access the user interface to add/delete users and make modifications. Problem is their controllers and readers are proprietary so those would have to be replaced. At least you wouldn't have to replace the other generic door devices.

I am a fan of both of these systems but the HaaS really makes one think about what products to sell in regards to selling my customers a good and quality solution. What gets me is a customer ripping out all of their existing cameras just to replace with Verkada and then locked in to those cameras only to become bricks if they decide they don't want or like the product in the future. This is really bad business in my opinion.

Thank you John, excellent article. I anticipate your readers know that Cloudvue offers cloud cameras with no lock-in - our customers are free to reset the camera to a standard IP ONVIF camera at anytime and stop using our services if we are not meeting their expectations. Full disclosure that I work for Johnson Controls.

Solid breakdown all, well done.

The hostage model has its disadvantages and borders unethicality but... from my experience, working in and out of the model; customer care and service quality goes way up through these VSaaS hostage models. It might lock a customer in but it also locks an integrator in which from what I've witnessed throughout my career is one biggest issues/concerns an end users faces. The most common model is sell and forget and these VSaaS/Hostage models force the integrator to service their customers!

I think the VSaaS model paired with the openness of Onvif is the way to go!

An amazing video that succinctly summarizes the ethical and risk issues.

I can only hope that this makes waves into mass media that further points out the millions of dollars of tax money that is put at risk.

I'd be fascinated to know how many Verkada / Rhombus / Meraki / etc. customers would change VMS if there was (magically) a painless firmware conversion that turned the cameras into ONVIF-compliant devices, keeping their core functionality. How many would would change to another VMS if there was little-to-no friction in doing so?

I love this article, seriously. Nice work, team.

Here are some thoughts.

Like many security firms, one of our core values is "Peace of Mind" we use the Traction approach to core values and benchmark all employees and business activities against these core values every day.

In my opinion, HaaS does not measure up to our "Peace of Mind" core value; this is why we do not sell equipment exclusively used with certain software platforms. We believe that our clients should have the ability to walk away from us peacefully if they chose, and we make them aware of that upfront.

We've looked at several companies that sell HaaS platforms and while some of them look outstanding, we have always made the decision to pass on them.

This video was very well made, and very interesting. I hope that someone forwards a link to the national association of City Managers.

I have a word that I have used for many years to describe this kind of scam: MONORAIL. From the Simpsons episode where the smarmy guy sells the people of Springfield on the idea of installing a monorail. "You know, a town with money is a little bit like a mule with spinning wheel, no one knows how he got it and darned if he knows how to use it."

They are doing this same thing in the solar market. Solar as a service. Yeah, somebody is getting serviced alright. The customer. Again, in this case, once they install their property onto your roof, it is hard to get out from under it.

I'm really surprised at the lack of comments on this. It would be great to hear from end-users on this subject.

I’m shocked folks are so surprised by this lock-in method. Yes, it’s a new trend in the security industry but it’s been around in many other industries for quite a while.

In Canada, you buy a PVR ($600) for your TV. This PVR will only work with Bell and becomes a paperweight when you cancel your TV service. (https://www.bell.ca/fibe-tv/hd-pvr-receivers)

For years Sirius sold hardware that only worked with their subscription (looks like they still do - SiriusXM Commander Touch™ - Shop SiriusXM).

Whoop ($1b+ valuation) is basically a fitness smartwatch that only works with a subscription.

Gaming has been this way for a while. You buy a video game that will only work if you’re paying the monthly subscription.

To a lesser extent, we could talk about the business model of Nespresso, Juul, Gillette and Oral B. They offer a product that requires you to continue purchasing from them to use your originally purchased item.

I also find the Maytag and Honda examples to be a bit exaggerated. Of course if Honda turned off my 2016 Civic tomorrow, I would be upset. But if I bought a Honda next week and was told it would be $10 per month for the car to operate, my expectations would be set.

Check out NIO's (Chinese Tesla) Battery-as-a-Service.

Chinese Electric Vehicle Startup NIO is Offering a Battery Subscription Plan for its Vehicles - FutureCar.com - via @FutureCar_Media

NIO - NIO Battery as a Service

I realize it's not mandatory to subscribe to their BaaS so this is not a valid comparison but maybe a glimpse at the future?

I'm not sure you have enough GIFs!

Great article that any end user can easily understand and help them to make their right decision for their organizations.

While my experience is on the Access Control as a Service side, I think some of these questions also pertain to the video space. These are questions I talk to potential new integrators and customers about at Feenics.

1. Is all the hardware non-proprietary?
2. If so, can you point me to your competitors who support it? Obviously here Mercury makes it easy to switch and easy to point out other manufacturers. I also talk about Wiegand/OSDP (hopefully OSDP).
3. Who owns the data?
4. If you cancel your service, can you download all data including Audit Logs, Transaction History, People/Card Info into a usable format such as CSV, XLS, etc.? This should also apply to video.
5. Will your hardware keep working if you cancel the service? Will readers, schedules, decision still execute?
6. What happens in a non-payment scenario? What if it is because of the integrator and they stop responding, is customer outreach attempted?

I think it’s important to have a customer centric approach for long term success. We do our best to accomplish this at Feenics and we'll still have areas to improve each and every day. As this article points out, it seems that some investors think otherwise and it will be interesting to see if shining a light on this as you've done will affect messaging and buying behavior.

This is an informative article like most others. However, calling it HaaS is cute but it's also loaded. While I like playing around with loaded language for fun as much as anyone, it's not objective.

Are we analyizing Verkada's biz model, or SaaS for video security here? Much of the information here is accurate and fact based but tracks with Verkada and it's culture and biz practices.

If we decouple Verkada from video SaaS I have some comments. I've supported Meraki networking gear since 2014. I design and commision systems with varying levels of Meraki because it is a premium solution. This is discussed with all my clients going in. 80% of my clients have some level of Meraki in our packages. I do not offer Meraki video.

The golden rule: Meraki is not hardware, it is software. You are buying software with a license term. Part of the cost of ownership is buying the Meraki hardware to run the Meraki software on. That license entitles you to other benefits besides being excellent networking software running on quality equipment; it is perpetually under warranty with UPS Red replacement; there is 24/7 tech support; all platform upgrades/improvements and FW updates are automatic and so far I've never had an FW update brick a system.

Other platforms offer these features as add ons and upgrades. The only difference is Meraki has a single price of admission to the full suite where others all you hardware only with software add ons and support. To the surprise of nobody once these add ons are applied it costs as much as Meraki. But if you quit paying for the extras, the features turn off and you have a working piece of hardware. OK.

If somebody asks me 'you mean to tell me if I don't pay their fees they turn it off' after I've explained in detail that value proposition then we have a fundamental misunderstanding and it's not likely to go much further. I really don't want go back and forth with it, I'm not selling anything to anybody here. But there are many services and platforms that charge recurring fees for various reasons. SaaS has been here a long time and it's not going away, it will increase.

If a client with Meraki wants to dump me and go somewhere else, they can. They own the assets which are the license and the hardware. They can re-license themself. If they want to dump Meraki they have to rip out the Meraki gear that will quit working at the end of the licensing term because the software license expired. As most tech is now on a 5-7 year average cycle this isn't necessarily a deal breaker. But all my clients know that going in. This is why I don't think open ONVIF is viable for a 'closed' platform like Meraki: if they 'own' the platform and performance and fully support it 24/7 they are not going to want to take tech support calls because your Hikvision camera isn't staying on the time lapse schedule you defined in Meraki. I can't speak for Verkada. Meraki will accept support calls even if there are other manufacturers on a network, but video security is open much wider. I don't think Meraki's platform is for 1000 cameras either: it's more for a smaller elite team managing all IT for medium size companies and video security would fall into that platform. But that's getting into the weeds.

I'm sure all are aware one of Verkada's key founders is a Meraki founder. That's where they likely got the idea for the tech foundation. As for the biz practices and culture, who knows, but at that level they are def two diff companies.

I think some folks are vapor locked on SaaS. Or is it Verkada? If you think you're doing your clients a disservice by offering SaaS for critical infrastructure like networks, OK. That's your choice. I think you're doing your clients a disservice by not offering them these platforms. Happy selling.

Interesting mainstream example. Peloton has caused an uproar in the last few days with its treadmills, disabling the free usage option, though Peloton has responded saying this is just temporary:

A Peloton spokesperson told CNBC that the company will be waiving three months of membership fees for all Tread+ owners, as it works on another update that brings back the “Just Run” feature.

CNBC: Peloton disabled a free running feature on its treadmills, forcing owners to pay up

In our industry, there are often times where a VMS is selected, and it is perfect. But then a new C suite person is brought in, or a new IT person or a new security person. Or there is an acquisition, and there is a need/want to consolidate to one VMS. With HaaS, you can't move the cameras from one system over. Even if you are OK with the sunk cost of the hardware or licenses, you are stuck.

If you want to bring another site onto Verkada, you have to rip their existing cameras out. If you want to bring the Verkada site to the other VMS, you have to rip the cameras out.

If this was a retail chain that had Milestone in one brand and Genetec at the other, you can still use your cameras on either system. You can even re-use your servers, storage, OS, etc.

And then if the one stop cloud solution one day decides to cease operations, or increase pricing, you are out of luck. Most enterprise VMS will continue to work.

Peloton threatens to brick customers' $4,295 treadmills unless they pay up

This is a perfect article for these times! Glad you made the YouTube video, as well. Great for educating customers.