September 2, 2019
Related Articles (630)
For a few days, Facebook was providing a user's phone number and address available, with the user's permission, via its Facebook Graph API. Likely fueled by distrust of Facebook's previous approaches to privacy, users and press reacted negatively to the concept. Based on this feedback, Facebook reversed its decision and neither phone or address is returned to applications at this time. Privacy is a big concern, especially for APIs, but Facebook took appropriate steps for gaining user permission. The reaction to Facebook's platform change was an overreaction, which points to a need for more granular privacy controls and a better method of granting access.
This is the eighth part of ProgrammableWeb’s series on Understanding the Realities of API Security based on testimony by ProgrammableWeb’s editor-in-chief David Berlind to the ONC’s API Security and Privacy Task Force. This part looks at how to mitigate the security risks associated with APIs.
Google anti-harrasment project, Jigsaw, launched an API that brings programmatic access to the machine learning and AI technology driving the project. The Perspective API allows third parties like Wikipedia, the New York Times, and others the ability to score online speech for its toxicity level.