Best practices for allowing users to choose a display name on a social networking website?

views:

303

answers:

+2 Q:

Best practices for allowing users to choose a display name on a social networking website?

I run a social networking / blogging website ( http://www.obsidianportal.com ), and currently the users are identified by their unique (and unchangeable) username everywhere. Many have requested the ability to have a display name as well that they can choose. I'd like to support this, but I'm worried about spoofing and identity theft. So, I'm wondering if anyone has dealt with this and has any advice?

Here's what I'd like to avoid:

I'm known as Micah on the site. I don't want anyone to be able to choose my name as their display name and then impersonate me to others on the site. Similarly, I don't want people to be able to impersonate each other.

Here are some possible avenues I've identified:

Let them choose whatever name they want (within reason: profanity, racism, hate speech, etc.)
Don't allow users to choose a display name that overlaps with an existing unique username
Don't allow users to choose a display name that overlaps with an existing unique username OR an existing display name.

Am I being too paranoid? Should I just chill out and let users pick whatever names they want?

If the account is linked to a profile with some statistic I think you doesn't require to have to be unique username. If at StackOverFlow someone try to use my name and he is under 1 000 reps, I think it's obvious that I am the real. Of course, someone can use my name here and try to be me, in that case I would require assistance from administrator so maybe you should have a système to report abuse.

In the other way, I have a system that validate the username to be unique. That way, it's simpler. I do this because registered people doesn't have any profile page so it would be hard to know who is the real one.

Hope that help you.

Daok 2008-11-15 14:17:08

You're assuming that everyone knows who you are and would notice if they're talking to Daok (9000) and not Daok (100). You're reminding me of Ron Burgundy: "I don't know how to put this, but I'm kind of a big deal." :-)

Stewart Johnson 2008-11-15 14:29:25

I'd love to upvote your comment.

tvanfosson 2008-11-15 16:18:32

That's really not the point. I just said that someone with a more level of experience, or here reputation does have more credibility to know which one is the real. If I use Greg Hewgill everybody will find that I am the fake because he is over 14k and me only 9k.

Daok 2008-11-15 18:15:05

If someone call is child "Micheal Jordon" you will know who is the real or the fake by his achievement. My idea in my post reflect that a user is not only represented by his display name but by is profile (EXAMPLE reputation, badges for stackoverlow). Before reply to this read : it was an example.

Daok 2008-11-15 18:17:07

@Daok, I didn't mean anything personal. I just thought the Ron Burgundy quote was funny.

tvanfosson 2008-11-15 22:18:36

Yeah sorry @Daok, I didn't mean anything personal. Just that Ron Burgundy popped into my head when I read your answer. :-)

Stewart Johnson 2008-11-16 03:16:46

+2 A:

I'd go with the principle of least astonishment, in this case "Don't allow users to choose a display name that overlaps with an existing unique username OR an existing display name." Otherwise you could have 10 different people with nickname Piskvor talking to each other ;)

Piskvor 2008-11-15 14:17:13

ansaurus

tags:

views:

answers:

Best practices for allowing users to choose a display name on a social networking website?

related questions