Cis14 google's account chooser

Streamlining Login with an Account Chooser

Google Case StudyAdam Dawes

adawes@google.comhttp://goo.gl/VKxhkP

Google Confidential and Proprietary

How did we realize we needed a different login flow?Google Apps configured to auth via SAML

“Idiot Box”

How did we realize we needed a different login flow?50% of users that click sign-up have an account

Authentication ritual: typically performed as a single act

Really has two parts: identifier and credential

What’s possible when you separate them?Clean federation flows

Enterprise SAML customers

Consumer IDPs

What’s possible when you separate them?More flexible login challenges

But what’s the UX when you separate them?

But what if you begin remembering the identifier on the device...

What happens when you save the identifier locally?Better login conversions

● Name and photo for easy account recognition

● No typing email address!(millions of cries of thanks from mobile users)

What happens when people switch user accounts on a device?Account Chooser

● Simplifies login for users with multiple accounts and people who share devices

● Useful in other flows like OAuth consent

Account Chooser and avoiding double consent

Account Choosers don’t need to be branded

Wouldn’t all sites benefit from having a shared account chooser?OpenID Foundation accountchooser.com project

● Preserves privacy - all entries stored locally in HTML5 storage

● Easy for developers to integrate

● Google now bootstrapping entries, others to follow

● Google to move towards using accountchooser.com in the future

accounts.google.com

The Account Chooser pattern is taking offAndroid

Google● Preserves privacy - can be called

without any privileges for Google accounts

● Exploring way to represent all accounts on the device

Yahoo● Built directly into their own app

The Account Chooser pattern is taking offAppleTV

Account Chooser: As complex as you want to make it

More information

www.accountchooser.net

Cis14 google's account chooser

Documents

Transcript of Cis14 google's account chooser

Method Chooser Basic Statistical Tests

CIS14: Google's Identity Toolkit

CIS14: Double Trouble—Managing Growth

CIS14: PingID

CIS14: Kantara Open Stand Overview

Chooser Basic Statistical Tests

CIS14: Handling Identity in AllJoyn 14.06

Google's Database

Chooser User Manual - Bulgarian Academy of Sciencesdcl.bas.bg/Tools/Chooser/Chooser-UserManual.pdf · (1) select the individual words that form the MWE by left-clicking on each of

CIS14: Implementing MITREid

CIS14: Lean In: Enterprise Cloud Identity

Mini Tab Capability Method Chooser

GTK+ 2.0 App - Icon Chooser

CIS14: Persistent Trusted Identity

Google's Dremel

Google's $12

CIS14: Identity in OpenStack Icehouse

CIS14: Kantara Briefing on ID.me

CIS14: Authentication: Elderly People's Ankles

CIS14: Identity Management for the Cloud