Feeds

Zuckerberg admits fallibility over Gmail block

'But you must understand: I believe in OPENNESS'

Beginner's guide to SSL certificates

Facebook founder Mark Zuckerberg isn't sure that Facebook is "100 per cent right" in preventing Google's Gmail and other third-party apps from automatically importing email addresses from the social-networking service. He says that the company is still weighing the possibilities — and that it believes in openness.

"We're trying to think through these things and be respectful of all the forces that are at play," Zuckerberg said on Tuesday evening at the Web 2.0 Summit in downtown San Francisco. "One thing that we do care a lot about: our value system errs very strong on the side of openness and portability. That's why we built [Facebook] Connect, the single largest system that allows people to bring data from one system to another that's ever been created."

Google has long complained that Facebook doesn't offer an API that would allow users to automatically export email addresses from the social networking service — a complaint that came to a head earlier this month when Google cut off Facebook's access to Gmail's Contacts API.

Using the Google API, Facebook had offered its users the option of importing their contact names and email addresses from Gmail. But Gmail was unable to offer its users a similar import from Facebook, and in blocking access to its API, Google hopes to force a Facebook reversal.

Before expressing some uncertainty over Facebook's stance, Zuckerberg echoed previous claims from within the company that it was preventing exports because users didn't really "own" the email addresses of their Facebook "friends".

"Email is a little bit different from social networks," he said. "In an email program, if you have an address book, you put all the addresses in there, so that's very much your information. In a social network...if you upload a photo album or a blog post, that's yours. But there's information that's clearly not yours, [such as] someone else's photo album. But then there's information that's somewhere in the middle — maybe a photo you took but I tagged.

"What are my rights to that? What should I be able to do with your email address if we're friends and I can see your email address?"

And he indicated that he's just doing what Facebookers want him to do. "The feedback we get on a regular basis from hundreds and millions of people is more along the lines of 'we want control of all the information we put into the site,'" he said.

That, of course, cuts two ways.

Google did not immediately respond to a request for comment. But its stance is unlikely to change in the wake of Zuckerberg's moment of self-reflection. Earlier this week, Facebook rolled out a new messaging system that gives users the option of adopting an @facebook.com email address. As part of this roll-out, according to Facebook engineering head Andrew Bosworth, Facebook is allowing the automatic export of those @facebook.com handles, though not others.

But this didn't draw a response from Google. Clearly, Mountain View wants complete reciprocation.

Zuckerberg may say that Facebookers don't "own" their friends' email addresses. But surely they "own" the addresses they've imported from services such as Gmail. And during Zuckerberg's Tuesday appearance, it was pointed out that Facebookers can manually download their friends' addresses if they want — and that his arguments sounded like sophistry.

But Zuckerberg reiterated that the situation was "not black and white." And later in the conversation, he repeated that he's not sure the company's policy is the right one.

Whether this admission of fallibility was premeditated or not, it was a semi-effective way of deflecting the repeated complaints over Facebook's policies — from Google and from countless Facebook users. But what Zuckerberg didn't acknowledge is that Facebook does allow users to export email addresses into some third-party apps: namely Yahoo! Mail and Microsoft Hotmail. The social networking giant has partnerships with these two large Google competitors which allow for the free exchange of data.

So, in some cases, it doesn't matter if he's 100 per cent sure. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle was blown
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.