Strongly Connected Components

My experience with Hacker News Reviews

We've been working on FromABirdie.com for quite a while, and several friends have already used it for their own albums of letters and provided great feedback (and encouragement). Yesterday I felt that the time had finally come for a more public release, and decided to submit it to Hacker News and ask for reviews.  I want to share here a few observations about the experience, hoping to encourage others to take advantage of the great opportunity to get traffic, test whether the site can take the load, and get very thoughtful reviews. First of all, I want to say that all the reviewers were very friendly. I was expecting harsher comments from a community of hackers, but every single negative review I got was also accompanied with encouragement, and basically saying that they had liked the idea very much and that

• Very friendly reviews
• Very useful reviews
• Interesting traffic

Things that were useful for my site:

• Nothing broke, which was good
• Improve performace
• Improve graphic design
• Business idea
• Things that didn't happen: few clicks to tour. Very few albums created. Few people understood the idea well.

Where we've been

Our last post, the review of Netflix's security model, turned out to be a complete success with thousands of visits and downloads of the full report, and it led to conversations with the engineering team at Netflix about security flaws that we identified during our study (and which they fixed very quickly --it was impressive to see how they could react in a matter of days and rollout new versions of the entire communications protocol). It's been two months since that last post, and we have been absent without notice for a long time. The reason: we've been very busy! In addition to lots of client work, with Comcast and Pearson Education, we have been busy working on two projects for the Pomelo labs, which have also turned out to be quite successful:

• You may have already heard about the first one, Happn.in. If not, be sure to check it out. Jay has been working like crazy on it for a couple of months, and it shows. Happn.in keeps track of what people are twittering about in your city: it collects and aggregates popular phrases used on Twitter within 20 miles of major cities; the five most popular phrases each hour are posted to this site, and are tweeted three times a day to the happn.in Twitter account for each city. As I write this, there are about 98,587 people following happn.in in 63 cities!. The cool thing is that you can sign up to be the sponsor a the list for any city, for any period of time, and get your site's URL seen by thousands of people on Twitter. If you are interested in seeing how this all works, check out the site's About page, and if you're a researcher and want to get your hands on this kind of data, feel free to contact Jay at jay@happn.in.
• The other project is something I have been working on with Anita, my wife. It's called FromABirdie, and in a way it targets the other end of the writing spectrum. It's a site where people can create an "album" and invite others to write letters for a common friend. The letters are kept in a private album that only the recipient can access and, on a pre-specified day, we send him or her an email to announce the surprise that his/her friends have created. It started as a personal website that I built for my wife's XXth birthday, and since then it has evolved into a public service. We have seen it used for birthdays, graduations, Mother's Day and Father's Day, for a colleague that was moving, and just for fun. It's been very rewarding in many ways, and quite surprising to see how people write long, detailed, and deep letters to their friends, something that I thought didn't happen anymore in this age of Facebook, cell phones, and instant communications. By the way, it's free, so feel free to use it!.

These have been two wonderful months, full of fun stuff. We have also been lucky to collaborate with the great Matt Latkiewicz,  the brilliant design mind behind Happn.in, and I've been working with two wonderful undergraduate students from UMass: Aaron Packard, who is helping me with the Ruby on Rails engine behind FromABirdie, and Ann Wong, who is doing great work for Happn.in visualizations using Processing. It's been a real pleasure. The plan now is to continue working on these two projects (nights and weekends, after we're done with client work!) and to try to see them grow. Oh, and I've also been invited to attend the "Seminar on Innovative Approaches to Turn Statistics into Knowledge", organized by the World Bank, the Census Bureau, and the Organization for Economic Co-operation and Development, and I am looking forward to it. Lots of things. We promise to keep you posted more frequently!

On Netflix's video streaming security framework

As software developers we should spend more time studying the (relatively few) examples of systems that are well built: elegant, robust, efficient, cleanly designed and implemented. It is not only a wonderful way to learn from the masters, but also a very gratifying experience and a source of intellectual pleasure and stimulation. Last week we had some time on our hands and decided to spend it poking and studying the security model behind Netflix’s video-on-demand service ("Watch Instantly"). We wanted to learn about the constraints they enforce, the mechanisms they use, and the ways in which those constraints and mechanisms affect performance and the user experience. We were not surprised to discover that Netflix's security framework is as robust and well designed as the developer APIs that they provide. We share here what we learned, hoping that others can benefit from it as well. (But we also want to make it clear that what follows is simply our understanding of how things work, which does not necessarily map one-to-one to they way things actually work. We were meticulous in our study, but because we were basically reverse-engineering their process, there certainly will be some misunderstandings and things left out). The full report is available in PDF format, along with a text file with a complete dump of the messages exchanged between the Netflix player and the Netflix servers. We include below a copy of the first two sections of the report, describing the methodology and providing a general overview of the problem and the solution.

A brief introduction and methodology

Netflix’s video-on-demand service offers its subscribers the possibility to watch over 12,000 titles online through their Internet connection. It works on a PC/Mac with a browser-based player created by Netflix (written in Microsoft’s Silverlight), or via a Netflix-ready external player such as a Roku Box, an Xbox 360, the Samsung Blu-ray player, or any other Netflix-enabled device. Both kinds of players (browser-based and external) communicate with a set of Netflix servers that enforce security constraints, provide playback information, and stream the video files to the player. That communication is based on the HTTP and HTTPS protocols, and the message exchange can be observed at different times during playback and be used to make inferences about the kinds of mechanisms that Netflix must have in place in order to provide a secure video experience. Our analysis was centered on the browser-based playback experience. We created a new Netflix account and observed the message exchange using Firefox and Tamper Data, a Firefox plug-in that traps HTTP and HTTPS requests and responses to/from the server and displays their content, headers, and other useful information. We also briefly studied the behavior of external players. Precisely because those interactions occur outside of a web browser, we were unable to use any high-level tools such as Tamper Data to analyze the message exchanges. Instead, we had to rely on Unix packet sniffers (mainly tcpdump and Wireshark), which provide less detailed information and, in particular, make it much harder to decrypt HTTPS messages (especially since in these cases the key is locked inside the device!). Even though we were unable to analyze the messages as deeply as for the browser-based players, we still were able to detect many similarities and a few differences between browser-based and non-browser based players, and we detail them at the end of this report.

Security requirements, control mechanisms, and general architecture

Netflix concerns, from a security point of view, are:

• Only users with the correct (unlimited) plan can access content
• Users don’t share their account information with others
• Videos are only accessible from within the US, due to licensing restrictions
• Video content cannot be redistributed and played at a later time

Those restrictions are enforced by a set of coordinated mechanisms:

• Request user authentication before playing the video
• Allow a maximum of six playback devices (browsers, Roku, etc.) per account
• Reject requests that come from IP addresses outside of the US range
• Encrypt the video content
• Provide unique decryption keys per movie and device

The security checks take place over the duration of the playback experience, and are delegated to several different Netflix components and servers, each with distinct responsibilities. The following diagram shows the steps required to play a video on Netflix (slightly out of order, for clarity), the different servers involved in each process, and their respective responsibilities. Security responsibilities are also distributed on the client side, between the browser (which stores and sends cookies), the Netflix player (which follows the playback and security protocols described above), the Microsoft Silverlight player in which the player is implemented (which prevents cross-site scripting and makes sure that the player only talks to Netflix servers), and a proprietary Microsoft DRM component (which gets an individualized key for each player and coordinates with the License server to acquire keys that are unique to the movie and the player). This architecture provides several advantages:

• Because all playback devices are registered and associated with an account, Netflix can prevent abusive users from sharing their credentials with others; if they do so, their account will quickly run out of allowed devices. (Note that here a device corresponds to a user on a PC/Mac, or a Roku, Blu-ray, etc. external device. Two browsers on the same machine/user are one device, but two users on the same machine are considered to be two separate devices.)
• The encryption of video files ensures that only players with knowledge of the key and the decryption algorithm (proprietary Microsoft technology) can view them.
• If one of those decryption keys is compromised then the security threat is minor, because the keys are individualized and can only be used by one player.
• Thanks to this distribution of tasks, different servers and client components can focus on the particular constraints that they have to enforce, and assume that other constraints are checked somewhere else. At the same time, and because information is shared between the different servers (through cookies and extra headers in the HTTP requests), security on each of these components can be tightened as desired, if/when Netflix detects abuses or security breaches at a particular point.
• Because all communication takes place using well known HTTP and HTTPS protocols, Netflix has been able to easily provide their video-on-demand service to non-browser devices (such as Roku or Xbox 360) simply by implementing a player on the client side. All these non-browser players communicate with the same servers and follow more or less the same protocol as the browser-based player.
• Since all authentication and authorization checks are performed before playback begins, and since the content of files is encrypted, the streaming of the video files can be easily delegated to CDNs, increasing delivery speed without compromising security.
• Finally, because the playback experience is controlled through Netflix’s proprietary player, the enforcement of security constraints can be hidden almost completely from users. All they are required to do is log into the site using their account information. The registration and authentication of the device, and the acquisition of playback licenses, all happen behind the scenes.

For a step by step walkthrough of a typical playback session, you can download the full report (18 pages, skip the first two sections), and also get a text file with a complete dump of the messages exchanged (remove .doc extension, which Wordpress forced us to use).

Small-town charm

Although websites with user generated content are all the rage these days, it often feels like their communities are too big. I face the same problems over and over when picking though content (Youtube, Amazon, Reddit, etc.):

• Why do I see content I don't care about?
• Why do I have to weed through comments or reviews from people who don't think like me?
• What use is a four-star rating over 25,000 reviews if most of the reviewers are morons?

The cause of these problems is understandable; websites have built up all this content, and they want to show it off. A site that boasts a large number of users or reviewers is more likely to continue growing, as people consider it a reliable source for content. But how can we manage large communities (and related content) such that they still maintain small-town charm? Specifically, how can we match users and content? I'll describe one such solution: increasing the usefulness of content-heavy websites by maintaining clusters of similar people. These thoughts were inspired by this article. It's long and great; read it. To summarize, the article proposes some mechanisms for maintaining community within social bookmarking sites. Many of the proposed ideas can be generalized to all web communities. The Internet has supported community for a long time. Here's a general timeline of Internet communities I've been involved in over the years (although mostly as a lurker): VAX Notes > Usenet > various Listservs > Slashdot > Kuro5hin > Reddit > Hacker News. I generally stick around until the community grows too large, then move on to a new site. There's all sorts of writing about Internet communities; what makes them thrive or fail, and how they relate to real-world anthropology. More than these aspects, I'm interested in how we can provide a good experience for users, which in turn can promote the formation of community. To illustrate the issue, let's look at recipe websites, since I can't seem to find one I like (although Cookthink is pretty nice). Consider somebody who stumbles on a recipe website and wants to find something for dinner. They type in (or click on) 'pasta', and see a slew of results. Since there are many styles of cooking, it's quite likely that many of the results are useless to that person (too simple, too complicated, too unhealty, etc.). Although we don't know anything about the user yet, we want these results to become more useful in the future. Most commonly, the recipes are ordered by popularity or date, and the visitor can sort or filter the results by criteria such as cooking time or ingredients. In other cases, users can join pre-established communities (e.g. subreddits), and content is dictated by these group memberships. Sometimes, related content can be displayed (like Amazon's Customers with Similar Searches Purchased...). But how can we display appropriate content without the user doing anything? Perhaps on their first search, we can't. But as soon as they start clicking, we're learning about the user. We're learning which recipes they like, and we're learning how the user relates to all of those recipes' attributes. We're learning about the recipes and attributes they don't care about. More importantly (in the interest of promoting community) we're discovering how this user relates to other users. Suppose, after a few clicks, we assign the person to some subgroup of similar users (we maintain a user graph with edge weights that represent community proximity). It's transparent to the user; they have no idea this happens. From now on, we display content, comments and reviews only from closely related people, perhaps with some more distant content to fill in gaps. All that other stored content? Perhaps it's accessible through deeper searches, or perhaps it's not accessible at all. People don't like being presented with an immense number of results to sift through; just the good ones. It seems to work for In-N-Out. The key to this scheme is some metric to evaluate the happiness or satisfaction of users. Sometimes, site success can be measured by the length and quality of discussions (some users may prefer one-word conversations while others prefer longer, more involved responses). Perhaps the happiness of users of a cooking site can be measured by a constant or increasing frequency of use. The graph (and its related subgroups) can be shuffled or destroyed based on the percieved happiness of each user. Perhaps the site itself (the attributes used to generate the user graph, or the metrics used for happiness) can evolve to produce higher quality groups. This idea isn't about tacking social networking aspects on to existing sites. It's about transparent mechanisms with which sites can better present content and promote community. Though I'm not a social scientist, I'll bet that when users consistently see the same names on comments or reviews, they'll be more likely to forge relationships. And isn't that what we're all about?

Twitter, Email, and SMS integration, all for the price of one

We've been crazy busy these last couple of weeks, with a lot of client work, and I only now find the time to write down these thoughts that have been on my mind for quite a while.

A couple of years ago I built a time management system of my own because I couldn't find anything out there with the functionality that I needed. On the surface this system (which I lovingly named Heraclitus, in honor of the greek philosopher who made it impossible for us to bathe in the same river twice) is just a regular calendar & to-do list combo. What really makes Heraclitus so special for me, though, is the fact that instead of just checking things off the list and removing them from the database, Heraclitus keeps logs of everything I've done, along with notes associated with each task. This means that I can go back later and find, for example, the exact list of commands that I happened to use on April 15th, 2007 to create a new AMI for EC2 (and it's all searchable, of course).I use Heraclitus constantly, not just as a way to organize my day, but also as a knowledge base of everything that I've done, every article I've read, every client conversation I've had, every technical problem I've encountered and the solutions I've found, etc. etc. etc.

Heraclitus lives and runs on my laptop, which goes with me almost everywhere. There are, however, times when I am away from the machine, and of course I'd still like to be able to schedule a task within the system, or record an idea, or check something off. Sometimes I'd like to do that from my cell phone, other times via the more convenient email, and other times even via Twitter (for example to log a little remark about a interesting tweet that I've just read without having to leave Twitterrific). That functionality would be great to have but, needless to say, I've never had the time nor the desire to write all the three necessary interfaces to support it.

But the other day I realized what should have been obvious all along. Because Twitter can talk to cell phones and to email (via TwitterMail), all I had to do was build an interface to Twitter and, for free, I'd get the two other interfaces. And so I prompty added a background runner to my Heraclitus system, a simple script that periodically monitors direct messages to a Twitter account that I created for this purpose. Thanks to rest_client and hpricot, the code is really simple:

   require 'rubygems'
   require 'rest_client'
   require 'hpricot' 
    
   last_direct_id = TwitterCheck.find_by_name('last_direct_id').value
   while true do
       # Wrap in a begin/rescue, because Twitter *will* fail
       begin
           url = 'http://account:pwd@twitter.com/direct_messages.xml?since_id=#{last_direct_id}'
           dms = Hpricot( RestClient.get(url)
           (dms/'direct_message').each do |m|
               sender_name = (m/'sender/screen_name').inner_html 
               next unless sender_name == '[myaccount]' 

               # Get the text
               id = (m/'/id').inner_html
               text = (m/'text').inner_html 

               # If this fails, don't record the change
               begin
			        date, descr = text.split(/ /, 3)
			        Task.create(:name => descr, :on_day => date)
			        TwitterCheck.update_all("value = #{id}", "name = 'last_direct_id'")
					last_direct_id = id
               rescue
                   ActionController::Base.logger.warn('An error occurred: #{$!}')
               end
           end
       rescue
           ActionController::Base.logger.warn('An error occurred: #{$!}')
       end 
       sleep 240
   end 

The script uses a database table to record that last message that it received, and every two minutes it requests from Twitter the new direct messages for that Heraclitus account. If there are any, it verifies that the message was sent by me (so that other people cannot spam me), and then it parses the message according to my rules and adds it to my schedule. So now I can go to Twitter and send a message to my account like this:

   d myheraclitus 04-15 Pay Taxes @ 2:30

and in a couple of minutes it's listed on my to-do. The cool thing is that I can also text the same message from my cell phone (using shortcuts so I don't have to type all that text), and I can email it to a TwitterMail account that then forwards it to Twitter, and from there to my Heraclitus.

 

All three interfaces for the price of one!

Eight-ball terrains (part 2)

Last time, I talked about how we can visualize our shots during a game of pool in a three-dimensional terrain like this: That diagram, though, is a simplified method of choosing a shot. It includes only our preference for the location of the cue ball after the shot; there are other factors it doesn't take into consideration. Here I'll talk about several of them, including:

• Our opponent
• Shot difficulty
• Our skill level

When we look at the terrain of possible locations for the cue ball, notice that we've made one large assumption; that we will pocket the object ball and have the next turn. Of course, we all miss shots (some people/shots more often than others), so making this assumption ignores the possibility that our opponent will shoot next. Occasionally, when players don't have an easy shot, they play a safety; a shot where they don't attempt to pocket a ball in order to leave the opponent a very difficult shot. In fact, we can visualize the range of safeties with the same type of terrain: In this diagram, the height of the terrain represents our opponent's preference for the cue ball to land in that spot (assuming we miss our shot). In this situation (again, this diagram isn't necessarily realistic, but used to illustrate an idea), we'll assume that our opponent wants us to leave the cue ball so that he has a shot on the 12 (purple striped) ball. This means that if we were to play a safety in this situation, we want to miss our shot, and leave the cue ball anywhere except the peak at the end of the table. And most pool players, when taking a shot, are trying to accomplish one of the two objectives shown in the prior two diagrams. They're either playing offensively by trying to make a ball, or they're playing defensively with a safety. But that doesn't have to be the case; sometimes we can take a shot that, if we make it, will leave us an excellent next shot, and if we miss it, will leave the opponent a very difficult shot. We can visualize this with the composition (difference) of the two terrains: The peak that was previously at the end of the table in our offensive terrain matched our opponent's peak, so our preference for that shot may now be lower. The peaks in the new diagram are those locations where we will have a fairly easy next shot if we make the object ball, and our opponent will have a difficult shot if we miss. This terrain still isn't accurate; it should also take as input the difficulty of the shot. This can can be done by weighting the two terrains by shot difficulty when composing them -- if the shot is simple, and we make it 80% of the time, we should weight the offensive terrain more heavily than the defensive terrain. If a shot is more difficult, we should weight the defensive terrain more heavily. Recognizing the difficulty of a shot is hard because it has a psychological aspect. We must accurately gauge our own skill level. If we overestimate our abilities, we'll weight the terrains incorrectly, which will lead us to the wrong decision. Humility is important. And we could go on. Remember that this terrain looks only at the cue ball, and ignores the other balls on the table. This is natural for a pool player; in general, we try to hit as few balls as possible (unless we have a need to move one into a better position.) The diagram should probably be in n+2 dimensions, where n is the number of balls on the table. That would be tough to draw. What use is all this? I'm sure we could write a nice little pool-playing bot that takes all these aspects of shots, and some known variance (its current skill level) into consideration, and minimaxes them. A pool bot is pretty useless (I don't see us carrying around little terrain generators until we have holographic iPhones or something), so here are some things I've learned from thinking about the game in this way:

• You don't always have to decide between making a shot and playing a safety; sometimes you can do both
• Humility is important; recognizing you're not good enough to make a shot enables you to make a better decision
• Visualizing your terrain, and possible opponent terrains actually helps your game
• Don't try to talk about this stuff at the bar

Eight-ball terrains (part 1)

The game of eight-ball is popular amongst amateur pool players (aka local bangers) here in the US. I end up playing a lot of eight-ball (likely because my office is next door to a bar with pool tables), and find myself looking at it from a theoretical, computer-sciency viewpoint. FSMs, optimality, minimax, variance, etc. Needless to say, this doesn't hook a lot of listeners at the pool hall, so I've learned to keep my mouth shut. Instead, I thought I'd write down some of my ideas here. The general goal for each turn in eight-ball is to hit the cue ball so that it knocks an object ball into a pocket (if that didn't make sense, read the rules.) Each shot is quite different, and the optimal shot depends on many factors, the most important of which is the shape of the table, or how the balls are arranged. It's not always a clear-cut matter of making the next shot -- sometimes we don't want the object ball to go in the pocket, or sometimes we want two object balls to go in pockets. There are two components of pool that are equally important:

1. Knowing what shot to take next
2. Executing that shot

The second component can't be learned without a lot of practice, but the first can be learned without even picking up a pool cue, and that's the part I find fascinating. From one perspective, we can look at a turn as a dual-stated affair; the state (shape) of the table before our shot, and the state of the table after our shot. An optimal shot would involve sinking all our balls, with the 8 ball landing next to a pocket, and the cue ball nearby (so we can make the 8 ball on the next shot). Usually, though, the state of the table after a shot is similar to its prior state, although the cue ball has moved, and perhaps another ball has gone in a pocket. There are many possible states, mainly limited by how hard we can hit the cue ball, the spin we can put on it, the speed of the table, and the laws of physics. But how do we choose one of these states to aim for? Generally, a turn is simplified into two immediate objectives:

1. Make one of our balls
2. Leave the cue ball in a good spot to make the next ball

For example, if we are solids in the image below, we'd like to pocket the 5 (orange) ball, and leave ourselves a shot on the 2 (blue) ball. A word of warning to pool players about these diagrams: they're simplified -- I just whipped them up to illustrate some ideas. A good spot to leave the cue ball can be many places on the table (some subset thereof), and is possibly a large area of the table we can aim for. Often there are multiple such zones, some larger than others, and some more difficult to aim at. We can actually visualize these areas in three dimensions, like this: The three-dimensional terrain illustrates possible locations of the cue ball after our shot, and its height represents our preference for that location. The steeper peak in the illustration may make the next shot simple, but is difficult to aim at. The wider, rolling hill doesn't make for such an easy next shot, but is much easier to aim for. This is where the decision gets more difficult. The terrain we generated is simplified; its only input is our preference for the final location of the cue ball. Other factors, such as shot difficulty, should be included in the computation of the terrain, which may alter our final shot decision. Next time: Humility and our opponent (i.e. variance and terrain composition)

YARS now available for public use

In a previous post, I mentioned that Jay and I were working on a basic skeleton for a generic Rails app. The idea was to extract the common code that we almost always use in our applications and create a 'standard' project from which we can start new applications without having to worry about basic and repetitive stuff like layouts, user authentication, etc.  

Well, the skeleton is now ready, and available for public use from GitHub. YARS (YARS is Another Rails Skeleton) comes pre-initialized with a convenient set of plugins, libraries, controllers & views. It also contains a modified scaffold generator that creates much simpler (non-RESTful!) controllers and views. To use it, you simply clone the repository and

• Edit config/database.yml
• Edit ActionMailer, ExceptionNotifier, and SYSTEM_NAME setups in config/environment.rb
• Run rake db:migrate
• If you want, edit public/stylesheets/application.css (but not blueprint, so we can upgrade it later if necessary)

And then you're ready to go! 

Packages Included

Plugins

• acts_as_taggable_on_steroids
• file_column
• will_paginate
• exception_notification
• action_mailer_tls
• restful_authentication
• role_requirement
• better_nested_set
• ssl_requirement
• BackgroundJob (BJ)
• assert_valid_markup

CSS

• blueprint

Added/changed behaviors

Scaffold Generator

 $ ruby script/generate scaffold Model field1:type field2:type 

• Generates simple controller with four methods: index, new, edit, delete
• new and edit handle GET requests to display the form, and POST requests to process it
• All actions redirect back to index
• Two simple views: edit, and index

Restful_Authentication

• Modified so that users are only identified by email and password (not by username / login).
• Added method to change_password (/change_password)
• Added method to retrieve forgotten password (/amnesia). The method allows the user to specify a new password, which is stored but doesn't automatically replace the current password. An email is sent to the user's address with a link to confirm the change. When the link is followed, the newly set password replaced the old one, and the user is redirected again to the login page.
• Sends link to confirm password change in the background, using BackgroundJob (BJ). See jobs/email_changed_pwd.rb
• Requires SSL for login and signup

Roles

• Added default roles admin and user
• When a new account is created via Restful_Authentication, it makes it by default be a user

ssl_requirement

• Use by specifying ssl_required in your controller (and specify actions if necessary)
• Turned off by default in development mode (see ApplicationController)

Layout

• Uses blueprint to create basic grid.
• Header has SYSTEM_NAME (defined in environment.rb), and links to Log In/Out and Sign Up
• Footer shows AUTHOR_NAME with link to AUTHOR_URL (defined in environment.rb)

ActionMailer

• Setup to use action_mailer_tls, so that it sends email via GMail.
• See UsersController/amnesia and jobs/email_changed_pwd.rb to get an idea of how to send email in the background.

See the DETAILS file for more information about the setup of each plugin, and let us know if you have any questions. Of course, feel free to fork and extend in your own way!

Website subscriptions for the masses

There's been some talk lately in the startup world about directly charging visitors for websites people build (37signals via Hacker News, Jason Fried).

Apple has been pretty successful recently when charging for music and applications via iTunes and the App Store. Why? Because it's just so easy to buy things, and so darn cheap... (99¢? I just found that in my neighbor's couch.)¹ The convenience of pushing a button to get a new song has trumped the experience of going to a record shop, ordering the album online, or even tracking down the song via other, even cheaper, means.

The same idea could be applied to subscription-based websites. We (and by we, I guess I broadly refer to smaller companies or teams building applications for the web) could have a centralized service for website subscriptions. Let's call it apppay, or AppPay, or maybe Sashimi.

The service would make it simple for people to pay for and manage their website subscriptions, and, probably more importantly, condition them towards the idea of paying small amounts of money for services they like. It would also consolidate the bills into one monthly payment (like the 5¢ bill I comfortingly get each and every month from AWS).

Sure, I'd pay $2 a month for each of Bloglines, Hacker News, mint, and a really good Rails API site (no link available). And if all I had to do was push a button after mint had decided that I'd mooched enough content off them, why not?

I could then go to sashimi.com (which would itself charge $1/month) to see my current subscriptions, cancel the ones I don't use, and find new subscription-based websites I might like.

For visitors, the service would:

• Make subscribing to a website as easy as buying an iPhone app or iTunes track
• Allow them to manage all their subscriptions (and single monthly bill) from one place
• Make it easy to find other content they might be interested in (via ...if you like... or whatnot)

And for developers, it would:

• Make the billing piece of their website dirt simple
• Put them in a network of like-minded sites (sure, think Geocities' Web Rings)
• Build the social infrastructure necessary to start charging people for stuff on the web

A tip of the hat to tipjoy, which is a recent example of a simple web payment system, but which relies on the generosity of users.

And, a side benefit, as Agustin mentioned, might be to cut down on our information overload.

It would be an ambitious project, and involve all of those legal issues that hackers generally avoid like J#, but one worth putting out there.

¹ Like buying lottery tickets.

Ruby vs. PHP for non-techs (also Rails vs. CakePHP)

Today I was asked by one ouf our clients why we stubbornly insist on using Ruby on Rails when most of their clients (and their hosting services) support exclusively, or preferrably, PHP. Since I've been asked the same question several times before, I thought that it'd be a good idea to take a few moments & write down my thoughts about the subject. I am posting my response here thinking that there might be others out there who also need to explain the same thing in non-technical terms. Here's what I wrote:

From your client's perspective there's little difference: there's nothing you can do with Ruby on Rails that you cannot do with PHP, or vice versa. PHP is a little bit faster but the difference is minimal. PHP used to be easier to install and maintain, but now with Phusion Passenger RoR is as easy as PHP --basically, you almost don't have to do anything on your servers to get either one to run.

The big difference is in programmer's productivity. Ruby is a mature language, with full support for Object Orientation and with a clear idea of things that are too technical to get into here but that are very important for programmers  (in particular powerful inheritance mechanisms, reflection, closures, and strong support for meta-programming). PHP, on the other hand, originally started as a simple text processing language, sightly more complicated than HTML itself, which was later modified to support an approximation to object orientation. Even in its modern incarnation PHP betrays its origins as a simple scripting language (which is a great thing sometimes), while Ruby is a much more complete and solid alternative. As a consequence, the frameworks that run on top of them (Rails and CakePHP) have enormous differences : things flow in Ruby on Rails, while everything on CakePHP is a sort of hack. Ruby on Rails is based on the principle of least surprise (the language should behave in ways that minimize confusion for experienced users), while in PHP everything is new, ad-hoc, and 'dirty'.

So that you don't have to take my word for it, here's a chart of the number of open source projects started each year, by language:

Source: http://www.feld.com/wp/archives/2006/10/php-vs-ruby.html

See how hackers are dropping PHP (blue) and picking up Ruby (red)? Open source projects are usually self-funded, and so people tend to pick the tools that will help them accomplish the most with the least amount of effort. This includes not only how much code you have to write, but how readable it is, how easy to maintain it is, etc.

The bottom line is that Ruby on Rails is better for programmers. This, in turn, is better for the clients, because a) they can get more for the same amount of money, b) the resulting code is easier to maintain, c) the code is more modular and easier to extend by OTHERS, etc. Everybody is going that way. You should also look at the # of startups that are now using Ruby on Rails instead of PHP: they have tiny budgets and they need to spend them wisely --that's why it's important for them to choose good tools and frameworks.

Finally, and to be fair, I'd like to repeat that PHP is faster than Ruby on Rails (at least that's my understanding of it). That difference, however, mostly makes sense when you have the size of Facebook or Twitter (the first uses PHP, the second is rumoured to be dropping Ruby on Rails). But when you're anything smaller than them, you don't care too much about saving yourself 2 milliseconds in each web page that you serve. Saving yourself days of programmers' work is more important.

This chart summarizes my point well --although I can't say for sure that those bar are accurate, they do reflect my view on the issue:

Source: http://www.cmswire.com/cms/industry-news/php-vs-java-vs-ruby-000887.php

If you are Facebook or Twitter and care about speed & scalability, you use PHP. Otherwise, if you care about development speed and maintainability, you choose Rails.