dealing with user submitted data
Post on 17-Oct-2014
8.769 views
DESCRIPTION
This presentation was delivered at the IA Summit 2008 in Miami, FL.The wide-spread adoption of web-based services has helped people organize information, connect with loved ones, and share data through an electronic medium. This convenience, however, has spawned a massive proliferation of single-purpose user profiles, closed data repositories, and endless login credentials. Not surprisingly, people are quickly becoming less tolerant of experiences that require large quantities of personal information upfront.Deciding what information to ask a customer when creating an account is a literal balance between user needs and business needs. Users want to protect their privacy and provide as little information as possible. The business, on the other hand, wants to learn who their customer is, and ask as many revealing questions as possible.In this session, I will draw from my experience in redesigning the Yahoo! registration and account recovery systems. I will also show examples from other web sites, and suggest techniques to apply toward common IA and Interaction Design challenges faced in designing membership frameworks.This session will discuss the following topics:Making registration painless for your customersEncouraging accurate and truthful data entryKeeping the bad guys out but allowing for password recoveryTRANSCRIPT
![Page 1: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/1.jpg)
Lucas PettinatiPrincipal Interaction Designer
Re-experiencing information:
Dealing with user-submitted data
DEVELOPER NETWORK
![Page 2: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/2.jpg)
Part One Part Two Part Three
The reality of what’s out there
![Page 3: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/3.jpg)
“There are only two industries that refer to their customers as users.”
Edward Tufte
![Page 4: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/4.jpg)
![Page 5: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/5.jpg)
“Not only do we use the internet, we use it for self gratification as well”
![Page 6: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/6.jpg)
We want instant gratification
![Page 7: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/7.jpg)
It’s easy and cheap to switch providers
![Page 8: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/8.jpg)
We lie to protect our identity
CC By Töei
![Page 9: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/9.jpg)
Little white lies
![Page 10: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/10.jpg)
Little white lies
![Page 11: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/11.jpg)
Care to guess how many users chose “CEO” as their title?Out-of-context questions beg for deception
![Page 12: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/12.jpg)
Fear is part of the reason we act the way we do
CC By thisisanicephoto
![Page 13: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/13.jpg)
3.6 million US adults in 2007 lost$3.2 billion between 2006 and 2007
![Page 14: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/14.jpg)
3.6 million US adults in 2007 lost$3.2 billion between 2006 and 2007
![Page 15: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/15.jpg)
3.6 million US adults in 2007 lost$3.2 billion between 2006 and 2007
![Page 16: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/16.jpg)
Remembering account details is difficult
![Page 17: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/17.jpg)
Password generators make things... um, better?
Your Password:’<[2.S(0s6(¢9z1&
![Page 18: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/18.jpg)
“The most common user activity of a web site is to flee as quickly as possible.”
Edward Tufte
![Page 19: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/19.jpg)
Embrace user needs and leverage their natural behavior
CC By shades of mediocrity
![Page 20: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/20.jpg)
Part One Part Two Part Three
Improving the essence of user registration
![Page 21: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/21.jpg)
PreNeeds unique identifier
PostEncourages transactions
ImmersivePromotes usage
3 kinds of registration
![Page 22: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/22.jpg)
Immersive Registration
![Page 23: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/23.jpg)
Immersive Registration
![Page 24: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/24.jpg)
Immersive Registration
![Page 25: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/25.jpg)
Connect with your user
vs.
![Page 26: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/26.jpg)
Connect with your users
![Page 27: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/27.jpg)
Connect with your users
![Page 28: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/28.jpg)
Connect with your users
![Page 29: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/29.jpg)
Connect with your users
![Page 30: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/30.jpg)
Connect with your users
![Page 31: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/31.jpg)
Connect with your users
design_dude
![Page 32: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/32.jpg)
Ask only necessary questions
![Page 33: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/33.jpg)
Ask only necessary questions
![Page 34: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/34.jpg)
Ask only necessary questions
![Page 35: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/35.jpg)
Only use unique IDs if necessary
CommunicationNeeds unique identifier
Banking & FinanceIncrease security
![Page 36: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/36.jpg)
Only use unique IDs if necessary
CommunicationNeeds unique identifier
Banking & FinanceIncrease security
CommerceNo meaningful need
![Page 37: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/37.jpg)
Only use unique IDs if necessary
CommunicationNeeds unique identifier
Banking & FinanceIncrease security
CommerceNo meaningful need
![Page 38: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/38.jpg)
Use email or another common ID
@@
![Page 39: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/39.jpg)
Respect your user’s locale
![Page 40: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/40.jpg)
Respect your user’s locale
![Page 41: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/41.jpg)
Use CAPTCHA wisely
CompletelyAutomatedPublicTuring test to tellComputers andHumansApart
• Provide audio version for the visually impaired
• Allow user to request a different image
• Beware of color-blindness limitations
• Use CAPTCHA to protect commodities like usernames
![Page 42: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/42.jpg)
Part One Part Two Part Three
Dealing with forgotten credentials
![Page 43: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/43.jpg)
The circle of online life
![Page 44: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/44.jpg)
The circle of online life
Register Use Forget
![Page 45: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/45.jpg)
The circle of online life
Register Use Forget
![Page 46: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/46.jpg)
EmailSends email with current or temporary password
• Quickest method
• Assumes user controls their email account
ChallengeAsks for answer to a secret question in order to reset password
• Prone to repeated errors
• Works best when account information is up-to-date
• Predefined questions often have easy-to-guess answers
• Custom questions often contain, describe, or state the answer
ForensicConfirms account activity and details in order to reset password
• Verifies actions only known by the account owner
• Safest method
• Most difficult to implement
Account recovery mechanisms
![Page 47: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/47.jpg)
Email recoveryPut the user in control
![Page 48: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/48.jpg)
Email recoveryPut the user in control
![Page 49: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/49.jpg)
Email recoveryPut the user in control
![Page 50: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/50.jpg)
Email recoveryPut the user in control
Not asking for email address adds uncertainty
![Page 51: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/51.jpg)
Challenge recoveryThink of life events
Since graduating from college I’ve had different:Postal codes 12xPhone numbers 6xEmployers 4xMoves 4x Cars 3xVacation spots 2xPets 2xFavorite food 1xFavorite movie 1x
![Page 52: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/52.jpg)
Challenge recoveryThink of life events
Since graduating from college I’ve had different:Postal codes 12xPhone numbers 6xEmployers 4xMoves 4x Cars 3xVacation spots 2xPets 2xFavorite food 1xFavorite movie 1x
![Page 53: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/53.jpg)
Forensic recoveryBe flexible
≠
![Page 54: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/54.jpg)
Allow alternate paths
![Page 55: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/55.jpg)
Allow alternate paths
![Page 56: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/56.jpg)
Allow alternate paths
1
X1
ERROR
Account is
Locked
X2
ERROR
Password
Cannot be
Recovered
HELP
Customer
Care
LinkContact Customer Care
URL has .intl
argument
LinkForget your ID or password?
No{assume US}
Redirect to
KR account
recovery
.intl = KR
Set local to
US in English
Set INTL to
proper locale
Yes
Yes
No
1.1
What did you
forget?
CAPTCHA
Match
Inline Error
CAPTCHA
message
ButtonContinue
10
Forgotten
ItemForgot Password
Forgot Y!ID
Yes
1.0
Sign In No
Forgotten
Item
Forgot Password
Forget Y!ID
2
ID Exists
Access User
Yes
ID is a
disposable
email ID
VZ
Supersized
Y! ID
No
Yes
Rogers User
Yes
No
Yes
ERROR
Y! Access
InstructionsNo
ID
deactivated
No
No
Inline Error
No Y!ID
message
Alt Email in
UDB3Yes
Y!ID is
"Unrecoverable"
No
No
No
CAPTCHAForgotten
Element
Redirect to
"ID intl"
AR flow
ID intl differs
from .intlNo
Qualified
address list
size
1 or more
Zero
START
Next
address
Expired
Alt Email
Address
Disavowed
Alt Email
Address
Active or
Deactivated
Alt Email
Address
supplied at
registration
Address does not
qualify for ARNo No
No
No
Yes
YesAdd address to
list of qualified AR
email addresses
Qualified backup
email addresses
for AR
Yes
No
Yes
Yes
END
More
addresses in
master list
All backup email
addresses for AR
Yes
YAR Lockout?
No
Yes X1
Yes X2
Inactive
Alt Email
Address
Yes
No
*Always display CAPTCHA on error states
Yes
Increment AR
Badness counter
X3
Yahoo! ID
1.2
Confirm
Mobile Identity
Mobile
User?
Redirect to
Mobile
Process
Yes
DOB
ButtonContinue
No
X4
ERROR
Contact
Taiwan CC
.intl = TWNo
Yes
Taiwan YID Yes X4
AR possible
from .intlYes
Yes
No
![Page 57: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/57.jpg)
Yay, we’re almost done
Summary
![Page 58: Dealing with User Submitted Data](https://reader034.vdocuments.mx/reader034/viewer/2022051411/54418e30afaf9f5e208b474f/html5/thumbnails/58.jpg)
Summary
MINDSET
• Users want to retain their privacy and may be worried about ID theft
REGISTRATION
• Build a relationship prior to or with registration
• Be personable — use humor if appropriate
• Explain the value of questions if they may be seen as out of context
• Use an immersive registration process when possible
ACCOUNT RECOVERY
• Put the user in control of account recovery
• Remind users that their account may contain old information
• Use human support when possible