Feeds

Facebook claims mail API less intrusive than Gmail

This sh*t right here is tight

Security for virtualized datacentres

Facebook has defended plans to open up members' inboxes to application developers as a technology designed to spur for innovation in areas such as mobile messaging.

The social networking site said security consultant concerns that development of the technology makes for an unacceptable privacy risk are misplaced. In particular, Facebook said its Mailbox API plans poses less of a privacy risk than Gmail, which scans email messages to serve targeted ads.

Facebook users who sign up to applications that make use of Mailbox API give permission for applications to scan the contents of messages sent through the social networking website.

In answer to our questions about what privacy controls would be applied to the delivery of this functionality, Facebook offered a response that also sheds light on how the Mailbox software hook-ins might be developed to offer push email style-functionality for messages sent through the social networking website.

We are looking at ways of opening up Facebook to make it more accessible to users in the ways they want to access it, but we aren't the ones that decide how they want to use the tools we can provide, only the users can choose.

A good example of how we think it could be used is getting your Facebook Inbox on your Blackberry through POP similar to how Gmail is brought to you on your Blackberry. This type of API is standard for email providers across the Web and benefits users because it allows them to access their messages off of Facebook.

Doesn't allowing third-party app developers to hook into user's mailboxes go further than Gmail's scanning of emails to display targeted ads, we asked. Not so, a Facebook spokeswoman responded, arguing that users will have to give "explicit permission" for an app to access their inbox.

I was interested by your thought that it was potentially more contentious than Gmail? We believe it is much safer for a number of reasons. Facebook will be white-listing individual applications and the user must give explicit permission for the app to access the Inbox. I'm not aware of any webmail service that does any vetting for applications that use their POP features. And unlike Gmail, we don't have to share username and password for it to work which we believe makes it more secure.

This is also different to the regular API for applications, and importantly there are no advertiser implications either. We would, of course advise any users to always be cautious when interacting with applications.

Facebook's response follows our earlier article on the potential privacy concerns of allowing applications to hook into inboxes. Graham Cluley, senior technology consultant, described the development as a "privacy nightmare waiting to happen" and worried that a road-map for the technology may include plans to integrate functionality which would allow application developers to send mails from their users' inboxes. ®

Choosing a cloud hosting partner with confidence

More from The Register

next story
New 'Cosmos' browser surfs the net by TXT alone
No data plan? No WiFi? No worries ... except sluggish download speed
'Windows 9' LEAK: Microsoft's playing catchup with Linux
Multiple desktops and live tiles in restored Start button star in new vids
iOS 8 release: WebGL now runs everywhere. Hurrah for 3D graphics!
HTML 5's pretty neat ... when your browser supports it
Mathematica hits the Web
Wolfram embraces the cloud, promies private cloud cut of its number-cruncher
Google extends app refund window to two hours
You now have 120 minutes to finish that game instead of 15
Intel: Hey, enterprises, drop everything and DO HADOOP
Big Data analytics projected to run on more servers than any other app
Mozilla shutters Labs, tells nobody it's been dead for five months
Staffer's blog reveals all as projects languish on GitHub
SUSE Linux owner Attachmate gobbled by Micro Focus for $2.3bn
Merger will lead to mainframe and COBOL powerhouse
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.