WEBVTT

00:00:00.160 --> 00:00:06.560
chances are that you've got a staggering number of online accounts for everything

00:00:04.080 --> 00:00:10.400
from your weird craft store to that fitness forum that you joined to get

00:00:08.240 --> 00:00:14.480
advice on your workout program that only lasted for a couple of weeks

00:00:12.320 --> 00:00:19.760
and you've probably also grown weary of having to sign up for a new account over

00:00:17.440 --> 00:00:23.920
and over and over again so whenever you see one of those super

00:00:21.680 --> 00:00:29.519
convenient buttons that says sign in with facebook or google or soon sign in

00:00:26.960 --> 00:00:33.600
with apple you eagerly click on them but how do they work and are you possibly

00:00:31.599 --> 00:00:38.079
giving away too much of your personal information so these buttons use a

00:00:35.920 --> 00:00:43.280
protocol called oauth which takes advantage of the fact that services like

00:00:40.320 --> 00:00:49.440
google and facebook have enormous user bases and many of those people use them

00:00:46.559 --> 00:00:53.760
as primary services for communication and they already store their personal

00:00:51.600 --> 00:00:58.480
details in them like their names and email addresses the kind of basic stuff

00:00:56.399 --> 00:01:02.559
that many sites would require for your account activation regardless

00:01:00.879 --> 00:01:07.119
of how you sign up so what oauth does is it allows whatever

00:01:05.680 --> 00:01:14.080
third-party site you're trying to register for to access your google or

00:01:10.320 --> 00:01:16.479
facebook account but not in its entirety

00:01:14.080 --> 00:01:20.479
instead the site is only allowed to view certain

00:01:17.439 --> 00:01:22.560
pieces of your account typically a name

00:01:20.479 --> 00:01:27.040
and email at the minimum and maybe a profile picture

00:01:24.080 --> 00:01:31.360
so oauth manages this by first checking that you are actually signed in to your

00:01:28.960 --> 00:01:37.759
google or facebook account then assigning a special access token and a

00:01:34.799 --> 00:01:42.960
secret which is basically a password to the third party site so that google or

00:01:40.479 --> 00:01:48.479
facebook know only to give that site access to certain parts of your profile

00:01:45.680 --> 00:01:54.640
now an important note here is that oauth doesn't reveal your actual facebook or

00:01:51.520 --> 00:01:57.360
google account password so shady sites

00:01:54.640 --> 00:02:01.680
can't access or modify more information than they explicitly tell you that they

00:01:59.119 --> 00:02:05.759
will and that you authorized them to do one key though is to double check what

00:02:04.159 --> 00:02:10.239
permissions you're giving the site because many of them will allow you to

00:02:08.000 --> 00:02:15.040
modify what parts of your profiles they can access so that you can prevent a

00:02:12.480 --> 00:02:19.200
situation like you know some site that you use for promo codes constantly

00:02:17.120 --> 00:02:23.840
posting embarrassing coupons to your facebook timeline for the most part this

00:02:21.599 --> 00:02:27.840
single sign-in scheme works well and is quite convenient but of course in the

00:02:25.760 --> 00:02:32.800
world of tech someone is always trying to find a way to do it better and apple

00:02:30.400 --> 00:02:39.120
thinks it indeed has something superior with its new sign in with apple service

00:02:36.239 --> 00:02:43.280
so first up is integration with face id and touch id in an effort to give the

00:02:41.120 --> 00:02:47.920
sign in process a boost in both convenience and security so that's

00:02:45.440 --> 00:02:52.720
pretty swell but it's not necessarily even the main selling point here one of

00:02:50.319 --> 00:02:57.840
apple's big innovations is that sign in with apple will actually permanently

00:02:55.360 --> 00:03:02.560
hide your email address from third party services this is important because in

00:03:00.080 --> 00:03:05.920
some ways an email account is kind of like

00:03:03.360 --> 00:03:11.519
a master key because it serves as a master account with password reset

00:03:08.319 --> 00:03:13.920
capabilities for many other accounts so

00:03:11.519 --> 00:03:18.400
you don't want it just floating around out there looking like a juicy target

00:03:16.480 --> 00:03:24.959
so instead of giving it out like free candy apple will generate a random new

00:03:22.239 --> 00:03:30.319
anonymized email address that is linked to your account for every service that

00:03:27.680 --> 00:03:34.640
you sign up for this has the benefit of improving your anonymity online

00:03:32.480 --> 00:03:40.000
and also making it harder for unscrupulous sites to sell your actual

00:03:37.440 --> 00:03:43.680
email address to third parties or to spam you

00:03:41.360 --> 00:03:46.720
additionally apple claims that because they make their money selling you

00:03:45.280 --> 00:03:52.720
iphones and macs and monitor stands and whatnot your

00:03:49.840 --> 00:03:58.400
sign ins across multiple services won't be used to track your activity by

00:03:55.360 --> 00:04:00.080
contrast google and facebook do keep

00:03:58.400 --> 00:04:05.040
track of what third party sites you've signed into with their single sign-on

00:04:01.760 --> 00:04:05.840
solutions to help serve you relevant ads

00:04:05.040 --> 00:04:11.599
so that's apple's pitch and it sounds pretty good honestly so

00:04:09.680 --> 00:04:15.920
hopefully they'll stick to their promise not to track you

00:04:13.200 --> 00:04:20.959
especially because they're going to make sign in with apple a requirement for any

00:04:18.560 --> 00:04:24.960
app on the app store that also uses single sign-in options from their

00:04:22.479 --> 00:04:29.360
competitors just apple being apple

00:04:27.199 --> 00:04:33.199
speaking of being if you feel like being a little smarter go check out brilliant

00:04:31.840 --> 00:04:37.040
brilliant provides you with the frameworks for thinking about and

00:04:35.199 --> 00:04:41.680
solving problems and allows you to master concepts by solving fun

00:04:39.520 --> 00:04:45.759
challenging problems yourself instead of watching someone else do it i mean

00:04:43.360 --> 00:04:50.080
that's the thing a great education shows you the tools

00:04:47.759 --> 00:04:54.400
lays out the framework and then allows you to do it yourself because that's how

00:04:51.840 --> 00:04:58.560
you learn so they take big concepts break them up into bite-sized chunks

00:04:56.560 --> 00:05:02.240
present clear thinking in each part and then build back up to an interesting

00:05:00.240 --> 00:05:07.360
conclusion and if you try brilliant you'll be in the company of over 5.5

00:05:04.800 --> 00:05:11.680
million members who share your curiosity and love for math and science the

00:05:09.600 --> 00:05:16.800
community supports your learning so go head to brilliant.org forward slash tech

00:05:14.000 --> 00:05:21.600
wiki and get 20 off today that's pretty smart saving money so yeah

00:05:20.000 --> 00:05:26.160
it's a good place to start so thanks for watching guys like dislike

00:05:24.160 --> 00:05:30.000
check out our other videos and leave a comment if you have any suggestions for

00:05:27.759 --> 00:05:33.120
future fastest possibles uh in the meantime though don't forget to

00:05:31.360 --> 00:05:36.320
subscribe and follow so you don't miss any of the wow i'm wearing the wrong

00:05:34.880 --> 00:05:41.440
shirt uh uh oh it's too late

00:05:43.199 --> 00:05:45.919
i don't have time