Single Sign-on
Vast improvement in convenience.
Potentially helps security -- no need to constantly supply passwords.
But can hurt security -- if A trusts B and B trusts C, does A trust C? Should it?
- Don’t extend trust transitively; always go back to user’s sign-on station!
- Easier to control with certificates.