Naked on Pluto

Plutonian clothing strategy

June 15th, 2010 by Dave Griffiths

How naked do we want to be on pluto? This is a big question for us planning this game. We wish to explore notions of privacy in a socially networked world, but at the same time we risk hypocrisy if we fail to honor our players with anything more than complete transparency concerning what we are doing with their data.

While privacy and facebook has been a hot topic of debate recently, I’m unclear how much as been discussed about the rights given to facebook applications when you agree to give them access to your data. Depending on your settings, it can use your session id to do anything you can do – access your friend’s data or post on your wall (as most games like to do for advertising).

From my initial reading, the facebook privacy policy is fairly clear and well written concerning your responsibilities as an application developer. Firstly there is a distinction based on where the data comes from: Read more »

Tags: privacy api policy
Posted in contextual, script writing | 2 Comments »

Teaser – Let the Spoofing Begin…

June 12th, 2010 by aymeric

We have updated the website’s placeholder with a simple teaser that is available as a Facebook application.

After Dave’s early test to write a simple application that would dump all your data and some from your friends, I started to use the same technique but this time to do something with bits of this information. Namely, get some of your friends’ names and insert that into a partly predetermined chunk of text.

Even though this is all quite trivial, we think it’s a rather nice demonstration on how easy identity spoofing can be achieved by third-party applications. When you allow a Facebook application to have access to your profile, you let an unknown piece of code, written by who knows who, access to a lot of your data, and even though you are always warned about this, it is highly questionable that you actually realize what it implies. Similarly we have been agreeing for more than a decade to all kind of abusive software EULA without reading and understanding their consequences.

In terms of spoofing, based on the information pulled from your profile, it would be relatively easy to write a malicious chatterbot or come up with a design trick that could partly impersonate someone you know, pretend to be in your network of friends or a trustworthy known entity in order to pull more sensitive information from you.

More on that and the “Eliza effect” when we will start working on some bots for the game… Meanwhile you can check the simple pseudo spoof code here.

Tags: javascript, spoofing
Posted in script writing | No Comments »

A logo

June 11th, 2010 by Marloes de Valk

Here it is, a logo for Naked on Pluto! It has yet to be decided whether or not it is permanent or temporary, but for now the project can be identified in the blink of an eye.

Simplicity rules. Google font OFL Sorts Mill Goudy TT ¶ reversed.

Posted in graphic design | No Comments »

Revving up the engines

June 4th, 2010 by Dave Griffiths

A tentative first post from me! I’ve collected together some of the R&D experiments I’ve been developing recently and put them on our fresh and shiny new git repository.

Small steps to begin with, but we have some client/server communication happening between javascript and scheme (possibly more on the gory tech details later) and an teeny exploratory facebook api app (definitely more on that soon).

A largish chunk of the code is a simple build-your-own text adventure web app which is explained a little more here, and will be the basis of further experimentation to come.

Posted in technical | No Comments »