Demographics & Economics
OMB
Congressional Budget Office
The Federal Budget
U.S. Census Quickfacts
Inflation Calculator
CIA World Factbook
NationMaster
State Healthcare Facts
UN HDR stats
US Bureau of Economic Analysis
US Bureau of Labor Statistics
US CDC health stats
US DOJ Bureau of Justice Statistics
US DOJ crime stats
Constitution
The Constitution
The Founders' Constitution
The Avalon Project
The Federalist Papers
The antifederalist papers
Founding documents
Politics
ADA (liberal) Voting Records
ACU (conservative) Voting Records
Census Voter Turnout
Congressional Research Service
Memeorandum
NOW list of voting scorecards
PolitiFact
PorkBusters
Project VoteSmart list of voting scorecards
RealClearPolitics
Roll call votes--House
Roll call votes--Senate
Survey USA
WaPo Votes Database
Iraq/Terrorism
CentCom
Brookings Institute Iraq Index
Project on Defense Alternatives War Report
Nat'l Defense Univ Iraq
Nat'l Defense Univ Afghanistan
MERLIN, Nat'l Defense Univ Library Network
STRATFOR
Nat'l Memorial Inst for Prevention of Terrorism
West Point's Combating Terrorism Center
Politics blogs
Baldilocks
Blue Mass Group
Cadillac Tight
California Conservative
Jon Chait
Confederate Yankee
Crooked Timber
Democracy Project
Dinocrat
First Read
Gateway Pundit
GenerationPatriot
Horse Race Blog
Just One Minute
Hugh Hewitt
Michelle Malkin
Patterico's Pontifications
Power Line
Red State
RNCC blog
Scrappleface
Sister Toldjah
Talking Points Memo
The Blogometer
The Corner
The Next Right
The Moderate Voice
Think Progress
Wizbang
Moderate / centrist
Ambivablog
Bipartisan Rules
Booker Rising
Centerfield
Charging RINO
Donklephant
Liberal War Journal
Militant Moderates
The Buck Stops Here
The Glittering Eye
The Iconic Midwest
The PoliGazette
The Walrus Said
Legal & academic
How Appealing
Becker-Posner
Bench Memos
Concurring Opinions
Economists Do It With Models
Legalities
Prawfsblawg
SCOTUSblog
Sentencing Law & Policy
UCFB
The Volokh Conspiracy
Christian
Archbp Dolan: Gospel in the Digital Age
Bp Chris Coyne: Let Us Walk Together
ADW blog
Simon Dodd: Motu Proprio
Fr Zuhlsdorf: WDTPRS
Fr Longenecker: Standing On My Head
Elizabeth Scalia: The Anchoress
First Thoughts
Mirror of Justice
Rorate Cæli
Veritas Rex
Middle East & Muslim affairs
Eteraz
Iraq the Model
Lebanese Political Journal
Michael Totten
Michael Yon
General interest
Althouse
Ambiance
Chris Muir's Day by Day
Instapundit
IowaHawk
JAC
Professor Bainbridge
Prettier than Napoleon
Rachel Lucas
The Right Coast
Science Blog
Sippican Cottage
Whatever
Google's obsession with SSO ("single sign-on") was presumably one of the drivers pushing its disastrous "Buzz" product rollout over the cliff (Pat wrote about it here, among other places). SSO is kind of like playing monopoly with a new rule that whenever you land on another player's property, they get to charge you the rent for all their properties. The concept of SSO is aggregation: Instead of having a username and password pair for your email, another pair for your social networking platform (indeed, perhaps several), a pair for your Youtube account, a pair for your Picassa account, a pair for "Google Checkout" (a credit card information-retaining platform that you have probably used without even realizing it), and so on, you would log on to all these services using a single Google account. And any others that Google later buys.
Among the many, many follies of this approach (aggregation, for instance, is a risk that I mentioned here; cf. this from 2008), the foolishness of applying a skeleton key model to disparate services on the open ocean of the web—i.e. outside of the safe inlets of campus networks—is aptly illustrated by the latest phishing attack. "It's bad enough if hackers gain control of your Twitter account, but if you also use that same password on other websites (and our research shows that 33% of people do that all of the time) then they could access your Gmail, Hotmail, Facebook, eBay, Paypal, and so forth," warns Sophos AV's Graham Cluley.
Right he is. It is true that if you break someone's username/password pair for one account or service, it isn't a bad bet that you may be able to gain access to other services for which they may have used the same credentials. If you obtain my ebay credentials, for instance, maybe I used the same credentials for my Amazon account. Maybe. But you can see where this is going. With multiple sign-on, user credential apathy may lead to a wider security breach. With SSO, however, if hackers gain control of your Google account, and you have chosen to opt in to (or been dragged unawares into) Google's interlinking of its various services, that is, in and of itself, a comprehensive security breach. An attacker has unfettered access to everything you do within Google's ever-growing ambit.
I sure hope no one signs on to their Gmail account from a public library. Be very careful about logging out, not merely closing a browser window.
Our RSS feed