Cis14 google's account chooser

16
Streamlining Login with an Account Chooser Google Case Study Adam Dawes [email protected] http://goo.gl/VKxhkP

Transcript of Cis14 google's account chooser

Page 1: Cis14   google's account chooser

Streamlining Login with an Account Chooser

Google Case StudyAdam Dawes

[email protected]://goo.gl/VKxhkP

Page 2: Cis14   google's account chooser

Google Confidential and Proprietary

How did we realize we needed a different login flow?Google Apps configured to auth via SAML

“Idiot Box”

Page 3: Cis14   google's account chooser

Google Confidential and Proprietary

How did we realize we needed a different login flow?50% of users that click sign-up have an account

Page 4: Cis14   google's account chooser

Google Confidential and Proprietary

Authentication ritual: typically performed as a single act

Really has two parts: identifier and credential

Page 5: Cis14   google's account chooser

Google Confidential and Proprietary

What’s possible when you separate them?Clean federation flows

Enterprise SAML customers

Consumer IDPs

Page 6: Cis14   google's account chooser

Google Confidential and Proprietary

What’s possible when you separate them?More flexible login challenges

Page 7: Cis14   google's account chooser

Google Confidential and Proprietary

But what’s the UX when you separate them?

But what if you begin remembering the identifier on the device...

Page 8: Cis14   google's account chooser

Google Confidential and Proprietary

What happens when you save the identifier locally?Better login conversions

● Name and photo for easy account recognition

● No typing email address!(millions of cries of thanks from mobile users)

Page 9: Cis14   google's account chooser

Google Confidential and Proprietary

What happens when people switch user accounts on a device?Account Chooser

● Simplifies login for users with multiple accounts and people who share devices

● Useful in other flows like OAuth consent

Page 10: Cis14   google's account chooser

Google Confidential and Proprietary

Account Chooser and avoiding double consent

Page 11: Cis14   google's account chooser

Google Confidential and Proprietary

Account Choosers don’t need to be branded

Page 12: Cis14   google's account chooser

Google Confidential and Proprietary

Wouldn’t all sites benefit from having a shared account chooser?OpenID Foundation accountchooser.com project

● Preserves privacy - all entries stored locally in HTML5 storage

● Easy for developers to integrate

● Google now bootstrapping entries, others to follow

● Google to move towards using accountchooser.com in the future

accounts.google.com

Page 13: Cis14   google's account chooser

Google Confidential and Proprietary

The Account Chooser pattern is taking offAndroid

Google● Preserves privacy - can be called

without any privileges for Google accounts

● Exploring way to represent all accounts on the device

Yahoo● Built directly into their own app

Page 14: Cis14   google's account chooser

Google Confidential and Proprietary

The Account Chooser pattern is taking offAppleTV

Page 15: Cis14   google's account chooser

Google Confidential and Proprietary

Account Chooser: As complex as you want to make it

Page 16: Cis14   google's account chooser

Google Confidential and Proprietary

More information

www.accountchooser.net