I have a web site using Facebook Connect where people have a strong incentive to create fake Facebook accounts and login multiple times in order to get more “votes” in my singing competition.
Anyways, I’ve come up with a strategy to identify these fake accounts and not let them use my site. (Haven’t done the programming yet)
- If their earliest wall post is more than 30 days old, then validate them.
- If they have more than 20 friends, then validate them.
- If their first profile picture is more than 30 days old, then validate them.
- If their account has been phone verified, then validate them.
Number 4 is the one I’m having trouble with. One post I read says the GRAPH API has a verified field, but suggests that shows if the email has been verified (but not phone). This has proven a tough thing to search for. So I’m still unsure if this is possible.
Any comments on my strategy or help with #4 would be appreciated.
Thanks.
We use verified and friend count to limit people. We even put those requirements into our legal terms so there’s no misunderstanding.