Feeds

Open API lessons for LinkedIn and Facebook

Code to play, not pay to play

Internet Security Threat Report 2014

Open... and Shut One of the cardinal rules of open source is reciprocity: you can use my open-source code under the same terms that it was given to me. But as open source shifts to open APIs, "open" is increasingly a one-way street.

As one major case in point, LinkedIn likes to tout its open API to developers, but apparently only developers of a certain kind: the kind who don't compete with LinkedIn.

LinkedIn's stingy access to its API first came to light a year ago, when the professional networking service cut off API access to BranchOut, Monster, and other competitive services. LinkedIn cited Terms of Services (TOS) violations, principally the fact that these alternatives were planning to charge for access to LinkedIn member data.

Fair enough, right?

Perhaps. But it's perhaps not surprising that even as LinkedIn shut off access to would-be competitors, it released its own service (called Sales Navigator) that lets sales professionals buy access to LinkedIn member data without actually having any personal connection to the members in question, as Forbes reports.

LinkedIn declares in its S-1 that: "One of our core values is to make decisions based on the best interests of our members," but it seems that a value that LinkedIn holds even more dear is the ability to monetise its user base at the expense of user privacy, and to the exclusion of competitive services that might actually treat its user data with more respect.

Such discrimination is impossible in open source.

Early in the commercial life of free and open source software, there was a movement to provide source code free for all non-commercial use, but to require payment for any commercial use. True to its principles, the Free Software Foundation repeatedly nixed this, even despite the good intentions (make those who could, pay, so that non-commercial users of the software could use the software freely). "Open" meant that it was truly open, and not only open for those that helped the developer fill their wallet.

For LinkedIn, apparently "open" is a one-way proposition. Its APIs are free and open for all to use so long as they bring users or other benefits to LinkedIn. But competitive services just might pull users away from LinkedIn, and, even worse, might cut into LinkedIn's revenue streams, so they're banned from using the service.

Not that LinkedIn is alone in its one-sided view of openness. Facebook is a very open platform, unless, of course, you want to take your Facebook contacts over to Google's Gmail service. Google finally pulled the plug on the one-way pilfering of its address book service by Facebook, saying it would only open access to those that wanted to share two-way access, even if the other service was competitive to Gmail.

Since late 2009, LinkedIn has touted its open platform for developers. But it had been pressured to open up long before by David Berlind and others. It seems, however, that the company still has much to learn about what a truly open API looks like, and how it should be enforced.

So does the industry as a whole. As Mayfield's Robin Vasan speculates: "Perhaps the next generation of software will be solutions composed from these APIs/services." But this is likely only to be true if developers don't feel locked down or locked in by the APIs.

Open source showed an excellent way to ensure that software could be used and reused with relatively unfettered access. The API crowd has much to learn from its open-source progenitors. ®

Matt Asay is senior vice president of business development at Nodeable, offering systems management for managing and analysing cloud-based data. He was formerly SVP of biz dev at HTML5 start-up Strobe and chief operating officer of Ubuntu commercial operation Canonical. With more than a decade spent in open source, Asay served as Alfresco's general manager for the Americas and vice president of business development, and he helped put Novell on its open source track. Asay is an emeritus board member of the Open Source Initiative (OSI). His column, Open...and Shut, appears three times a week on The Register.

Security for virtualized datacentres

More from The Register

next story
Microsoft WINDOWS 10: Seven ATE Nine. Or Eight did really
Windows NEIN skipped, tech preview due out on Wednesday
Business is back, baby! Hasta la VISTA, Win 8... Oh, yeah, Windows 9
Forget touchscreen millennials, Microsoft goes for mouse crowd
Apple: SO sorry for the iOS 8.0.1 UPDATE BUNGLE HORROR
Apple kills 'upgrade'. Hey, Microsoft. You sure you want to be like these guys?
ARM gives Internet of Things a piece of its mind – the Cortex-M7
32-bit core packs some DSP for VIP IoT CPU LOL
Microsoft on the Threshold of a new name for Windows next week
Rebranded OS reportedly set to be flung open by Redmond
Lotus Notes inventor Ozzie invents app to talk to people on your phone
Imagine that. Startup floats with voice collab app for Win iPhone
'Google is NOT the gatekeeper to the web, as some claim'
Plus: 'Pretty sure iOS 8.0.2 will just turn the iPhone into a fax machine'
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.