Slashdot Mirror

← Back to Stories (view on slashdot.org)

Facebook Launches Social Login and HTTPS

Posted by samzenpus on from the secure-friend-request dept.

dkd903 writes "Facebook has introduced two new features. First is a really innovative way to verify real users rather than using CAPTCHAS. Using the Social Login feature (or Social Authentication as Facebook calls it), users will be shown a few pictures of their friends and then they will be asked to name the person in those photos. They've also launched HTTPS. The company says: 'Starting today we’ll provide you with the ability to experience Facebook entirely over HTTPS. You should consider enabling this option if you frequently use Facebook from public Internet access points found at coffee shops, airports, libraries or schools.'"

6 of 273 comments (clear)

  1. Problem by girlintraining · · Score: 5, Interesting

    Problem: A lot of what people tag as me is to get my attention, not because it IS me. I got locked out of my account for about a week because of this mis-feature, and when I did get back in, I had to spend about three hours removing tags of things like trees, the sun, burgers, and lots of other stuff.... now it works. But the solution fails because it makes an assumption that isn't always true.

    --
    #fuckbeta #iamslashdot #dicemustdie
  2. All but mandatory for "free" wifi by davidwr · · Score: 3, Interesting

    All web sites that allow logins should REQUIRE or at least STRONGLY ENCOURGE HTTPS from unencrypted WiFi hotspots such as those "found at coffee shops, airports, libraries or schools."

    I may trust McStarCoffeeInn not to snoop my traffic but I do NOT trust the guy in the next booth or room much less the guy in the parking lot.

    The traveling public needs to pressure these companies - especially those that charge for it like some hotels - to switch to encrypted WiFi.

    --
    Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
  3. Re:Facebook discovers HTTPS by Enry · · Score: 3, Interesting

    Wait, what?

    All you're talking about is scale. Instead of having a regular HTTP site, you now have HTTPS sites, and perhaps a few more to handle the load. HTTPS is not the CPU hog it was 10 years ago, and HTTPS is not some obscure technology noone uses. Wikipedia offers HTTPS, Google offers HTTPS. What makes it so difficult for Facebook to do the same?

  4. Anyone else sense ulterior motives? by Anonymous Coward · · Score: 3, Interesting

    As a coincidental bonus of this new CAPTCHA, Facebook has nearly every photo stored in their library face-tagged for them, using the most powerful and accurate computers in existence - us.

  5. Re:Facebook discovers HTTPS by SuperQ · · Score: 5, Interesting

    Again, what scale? Enabling https is only a few % different in CPU time for handling the crypto overhead. I've done the math. Based on any reasonably modern server machine (say a 1U dual socket quad-core) and facebook's quoted query rate it would only require an extra half rack of CPUs to turn on https for all facebook pages, including images.

  6. HTTPS has been there for a long time, still no IM by Anonymous+Freak · · Score: 4, Interesting

    I've been using HTTPS for Facebook for quite a while (when accessing over wireless, or from work,) and they've slowly been making it less obnoxious. The certificate errors disappeared a few weeks ago, but there is still no IM via HTTPS. And if you are logged out and visit their site via HTTPS, if punts you back to the regular HTTP when you log in, so you have to go manually re-S the connection.

    --
    Another non-functioning site was "uncertainty.microsoft.com."
    The purpose of that site was not known.