Facebook security

screen-shot-2010-11-23-at-84149-pmI was experimenting with a little known feature in Facebook, “Download Your Information” which will actually supposedly give you a copy of everything that is ‘yours’ on Facebook.

The definition of what is ‘yours’ is fairly tricky of course: is what you posted on someone else’s wall ‘yours’ or ‘theirs’? And so on.

But what interested me was how they made double and triple sure that in fact it was me who was downloading my information.

I had to supply my own password again: ok that makes sense.

But then for extra extra security I was shown a bunch of wall photos of people who are my ‘friends’ and asked to identify them from a multiple choice set of friends. This is harder than you think: not every friend is such a good friend. And not all the wall photos are recognizable. They might be childhood photos, or out of focus group shots at a party or whatever.

But really quite a smart way to make sure that the downloaded content does not fall into the wrong hands.

Facebook and Twitter Hacking

I guess it’s not surprising that people’s Facebook and twitter accounts are getting compromised. From the New York Times:

“Malicious programs are rampaging through Web sites like Facebook and Twitter, spreading themselves by taking over people’s accounts and sending out messages to all of their friends and followers. The result is that people are inadvertently telling their co-workers and loved ones how to raise their I.Q.’s or make money instantly, or urging them to watch an awesome new video in which they star.” (from From Viral Crooks, Social Networks are Prime Targets)

I just changed my three Twitter accounts, and Facebook accounts to use a “very hard” password. I suggest you consider doing it too 🙂

Trade-off: Facebook vs. Ning

I am advising a client who is interested in reaching out to a huge existing community of folks who they, historically and today, can count as their natural constituency.The problem is, they don’t have their names or email addresses and want to connect to them, and them to each other. The question is, how to do that.

I explored three options with them: create a Facebook ‘Group’ and/or Application, create a Ning social network, or create a new and beautifully designed new web site to serve as the hub of the effort.

Here are some of my tentative conclusions.

  • Outreach: No matter what approach is taken, a big part of the effort will be outreach, via email or google ads or something along those lines, to get the attention of these people, and motivate/incent them to register. The message, tone, language and incentive have to be carefully designed and monitored and tweaked to make it work.
  • Design and Look: Facebook will allow the least customization of the look, followed by Ning, and of course creating a new site will give you any design you want. But don’t get all caught up in how important having a unique look is. There is something to be said for the familiarity and trust that a Facebook-looking group elicits.
  • Cost: There is a similar trade-off in cost: A Facebook group will be the cheapest, a Ning site a little more, and a custom web site will almost certainly cost much more than you expect.
  • Facebook has captured a lot of the ‘social graph’: This one is the hardest to explain because my point is subtle. [I await comments from someone saying that this point isn’t subtle at all] Facebook’s magic is that it has already recorded many relationships, who is who’s friend etc. They are trying to ‘capture the social graph’ So, it is much easier to encourage John to tell his friend Jane to also join this group because neither John or Jane have to ‘sign up’ – create a profile. So this is one unique advantage of using Facebook, assuming that there is reasonable overlap between Facebook users and the people we are trying to find.

Those are some of my insights in assessing the trade-offs. Please tell me all the things I am missing!