When you're designing for the web, you have to think about identity and authentication. This has always included the nuts and bolts of login fields and passwords, but now also includes 3rd-party authentication services like Facebook Connect, OAuth, OpenID (and more!). Amidst this complexity, creating good user experiences has gotten a little weirder and a little harder.
This talk presents a pragmatic approach to designing identity and authentication on the web, focused on best practices and a reality-based understanding of user behavior.
- How users really handle accounts and passwords, and what that means for your site.
- Best practices for account creation, password selection, and login/logout.
- How to handle shared accounts, shared computers, and other messy realities.
- What designers needs to know about OpenID, OAuth, Facebook Connect, and other identity platforms.
- What might happen next: future-proofing your design without a crystal ball.
11th–15th March 2011