Sunday, August 19, 2007

It all has to start with I, doesn't it?

It always has to start with the self. The self is the center of the world in the brand new avatar of the Internet. While it feels gratifying to be acknowledged as The Master of the world, I would perhaps have been more comfortable just having the royal seal at my disposal. However, idempotent as we might be, we have to realize that in the increasingly fragmented world, we need better techniques of establishing ourselves. The self needs better means of self-expression and self-authority. And, thus, my first blog post in my new technical blog starts with a discussion of identity management systems on the Internet.

A discussion of identity management systems has to start with the Laws of Identity, penned by the grand daddy of all-things-identity at Microsoft, Kim Cameron. Unlike what people would expect, the laws are not written in a technical language with complex cryptographic equations making them esoteric, but rather in a very accessible language because they talk more about the philosophical aspect of identity rather than the technical, a very important consideration in the design of a mature technical system. The seven laws (over-simplifying them) are:

  1. User Control and Consent: The user is the King, the Queen and the Jack. The identity meta-system must recognize the user as being the final authority on whether he wants information to be disclosed, and ask him/her at every instance. It should also have means of protection against phishing and other attacks.
  2. Minimum Disclosure for a Constrained Use: Information disclosed should be the minimum required for the completion of the current task. Essentially, there should be no need of disclosing credit card information if you try to comment on this blog. Also, if a site just needs the single bit information whether a person is above 18 or not (as many do!), they should not ask for the date of birth, since that means divulging more information.
  3. Justifiable Parties: This is from the experience of the failure of the over-arching vision of the Microsoft Passport identity management system. The law states that there should be a justifiable need for an identity provider and its interactions to have identity information. Essentially, there is no need to unify my Social Security Number of Tax Identification Number with my MySpace account. Users may not be very comfortable having one identity system for all uses. I may not want to divulge my company identity when surfing objectionable material online.
  4. Directed Identity: This, to me, seems like a corollary to the laws 2 and 3 above. It says that there should be unidirectional identity handles which don't reveal more information about the identity than that required. For instance, if my employer allows me to ex-officio access IEEE Journals, IEEE should not be able to get my identity handle, except for the information that I work for a particular company which allows me access. Also, identity providers should be like 'beacons' emitting identity information as allowed by the users, but establishing an identity relationship with it should be a uni-directional identity relationship. This is essentially to prevent correlation of identity-handles. Cookies are an example -- while a cookie might authenticate a user in a widget, cookies cannot be shared across sites to avoid correlation. Of course, there can be ways to defeat this purpose and those are essentially the instances that are undesirable.
  5. Pluralism of Operators and Technologies: Cameron states that one single monolithic system can never be enough for all our identity needs. A person might definitely want to have separate providers (Windows Domain Authentication, Open ID, Paypal) and technologies (Kerberos, Web Services) for different use-scenarios and may not want to correlate them for obvious reasons.
  6. Human Integration: Cameron makes the point that we need better design of UI to prevent identity theft and ensure privacy during the interaction of the human and the terminal on which they authenticate themselves. There can be many a slip between the cup and the lip, and this is becoming all the more apparent thanks to phishing and other kinds of attacks. We need better methods to prevent identity systems masquerading as others, and more secure means of communication between the user and his terminal for identity information exchange (biometrics?).
  7. Consistent Experience across Contexts: Cameron tries to make a point for a universal identity information entry interface across the various kinds of identities we might like to maintain (professional, personal, financial), but the point seems more for Windows Info Card (I'll talk about that later). It seems inspired by our carrying different kinds of identity cards in our wallets, such as the Driving License, employer ID card and so on each of which have the same experience (show the card and gain access).

It is great to have somebody's wisdom and experience captured so concisely in a set of seven rules. That is what lets us stand on the shoulder of giants and build bigger and better technologies.

The laws seem simple, intuitive and practical, and are extremely general. I think that is its biggest undoing -- since they do not give formal semantics of the laws in a mathematical language, it is very easy to have ambiguity and doubt in terms of their interpretation. (A mathematical formulation of something as general as identity is not very easy either). Also, since they are written in such general language, there can be very loop holes and an actual identity system would have to do a lot of thinking to make them very robust, secure and private. I would only request Cameron to explore writing more formal means of expressing these laws and have extensive case-studies (I may not have looked very carefully for them) and have more extensive discussion about privacy, security and so on -- concepts that are becoming very pertinent by the day. I would also like to see more discussion from the perspective of the identity system -- things such as identifying bots, using captchas, and establishing authenticity of information a user enters (is the user really over 18?). He should perhaps consider writing a book!

A theoretical discussion of identity systems is not of much use, so I would endeavor to discuss some systems in use today. The simplest by far is the simple login password form backed by a text file/database that you can implement in under an hour. My guess that is a pretty robust solution for most simple sites. The downside is a registration process and the need of remembering one more set of usernames and password. The fact that most of us practically use the same usernames and passwords for every site is a matter of convenience as well as a significant security threat. If any one of the sites of compromised (which is very much possible because such under-an-hour hacks can not possibly maintain the highest standards of software quality), the risk of all your accounts being compromised is quite high. Also, it is very difficult to ensure consistent interfaces, and security of transactions. Varying privacy policies might well mean that the user control on the information s/he has divulged to one party is rather suspect. However, they serve their own purpose. This method is quick and dirty -- and works well in a rather large number of scenarios.

Of course, identity is very well understood in an enterprise setting. Kerberos and Lightweight Directory Accesss Procotol (LDAP) have been around for ages and have been the subject of a lot of research. There are standard implementations that can be used like a black box, and single sign-on within a single enterprise is probably a well-solved problem (that is a rather speculative statement). It is a much easier problem also because if we consider the scope of privacy and security etc. is a single enterprise intranet and the problem as well as their solutions are primarily technical. If, however, we consider a federated identity management system for the whole of internet, the scope is much larger, and the deliberations are not just technical, but philosophical as well, since it involves trust between parties who don't trust each other :)

Another concept that tries to ensure convenience is Open ID - a federated identity management system. The aim is simple -- to use identification information on one site to automatically establish it for some other sites. For instance, if you have Wordpress blog and you want to leave a comment at LiveJournal, you can provide your Wordpress blog URL and LJ automatically uses Web Services to establish identity. There is a user-consent phase and since it is not controlled by a single party, it is preferred by many (unlike Passport). The scheme works well for simple single sign-on areas which are public facing. This has recently been backed by AOL and Microsoft which has lent a lot of weight to the OpenID system. However, the system only establishes a basic protocol. The Open ID site unequivocally states that it is not a trust system and doesn't try to control spam. I would also be worried about using it in a general setting because if one site gets compromised the taint can spread across the federated system (this probably needs to be studied more). Another problem is that, since Open ID itself is rather vague about security and a number of other points, I very much envisage individual corporations coming up with their own standards (much like Javascript) which would yield a number of child-protocols perhaps not interoperable.

Microsoft is promoting the Windows CardSpace (nee Information Card and many other names). This follows the common practice of lifting paradigms from the real world into the virtual. A user can have a number of cards provided by various Identity Providers which Windows would save securely. When a website (Relying Party) wishes to establish the identity of a user, he would be presented with a secure dialog where he can choose which identity information to transmit, much like you looking into your wallet and taking out either your business card or your Driving License as required. Microsoft provides a number of cryptographic protocols which form the bedrock of secure transmission, and the initiative can not be successful without the participation of the other parties involved (one of the biggest problems due to intense competition). I am sure it would satisfy Cameron's laws since Cameron would have been obviously involved in the development process. However, I can very easily foresee myself lifting the problems from the real world as well -- what happens when my wallet gets lost (laptop stolen, or even virus infected), people cheating about credentials, Relying Parties passing information around (that could compromise the whole system!).

On the Internet itself, identity for very specific applications has been worked out to a little extent. Paypal and Google Checkout establish your identity with respect to financial transactions, and have become hugely popular. One of the oldest technologies on the internet (email) still remains the most popular means for establishing your identity in the online realm. How much progress have we really made in the last decade or two?

Considering that identity is a problem which is not well solved even in the real world completely, my guess the virtual world will only lag behind. There are a lot of new technologies, ideas and we have to wait and see which ones click. However, my humble guess would be that as Cameron himself proffers that there should be a pluralism of operators and technologies. The application and the usage scenario should be clearly delineated before starting to design any system (which is so true!) and it is easier and viable to solve specific needs (financial identity, enterprise setting). Scoping the usage always makes the problem tractable and leads to success (perhaps after a few iterations). My concern is that none of the current technologies clearly scope their work and that would be my biggest gripe.

[Another review of identity related technologies at Read Write Web. There is a conference Internet Identity Workshop as well. If you want a fleeting identity to login to sites which unnecessarily want login, you can check out Bug Me Not. Thanks to Mohit for some initial pointers.]

13 comments:

:Arindam said...

hey KK,
firstly I am amazed u r starting on another blog ... I faintly remember u had an old blogspot blog with the same name, and a javascript redirect to the spaces.live blog ....

nyway, apart from the simplistic design, I have just one thing to say: the content is too long :P

Nova said...

Hey good show dude! :)

Ur new blog rockS! :)

And ya, I just have one thing to add otherwise, u could try being more specific and reducing the content of eac blog. If u feel that it is impossible to cut short without losing the essence, it would be a good idea to divide the blog into topics and post each topic as a separate blog.

Cheers

Tarun Gupta said...

I read your blog and thought I could tell you about something else which would be useful for seeing maps and directions in India.

I am writing to tell you about MapmyIndia.com, a free interactive maps and directions portal for all India. See the map of connaught place, new delhi, get directions in mumbai from nariman point to juhu airport, and find nearby ATMs in kormangala, bangalore.

As a company and individual enthusiasts, we dream only of solving the problem of reliable directions and navigation for India. For your blog specifically, you can map enable it by using our youtube-style embeddable maps, and links to specific searches (of maps, directions, local and eLocation) on MapmyIndia.

Do give us feedback, suggestions, or get involved yourself by mailing me back at tarun@mapmyindia.com or marketing@mapmyindia.com.

And if you find the different services useful, we would be grateful to you for writing and telling your readers about us.

Warm Regards,
Tarun Gupta
The MapmyIndia Team
For directions in India, just search print and go with MapmyIndia.com

Anonymous said...

of Texas M.D. Anderson http://thistuesday.org/?q=node/12740 buy legal drugs Fludac Lichtman said. http://thistuesday.org/?q=node/12748 buy cod Rogaine 5% After one year, more patients - http://thistuesday.org/?q=node/12755 fedex shipping buy cheap c.o.d. Brand Cialis for similar success http://thistuesday.org/?q=node/12759 saturday delivery overnight Fosamax We should have http://thistuesday.org/?q=node/12762 purchase Myambutol who have failed Gleevec treatment. http://thistuesday.org/?q=node/12768 saturday delivery overnight Mega Hoodia - lung, http://thistuesday.org/?q=node/12769 saturday delivery overnight Sildenafil (Caverta) Sprycel is made by Bristol-Myers Squibb http://thistuesday.org/?q=node/12778 buy Sporanox indeed, http://thistuesday.org/?q=node/12787 cod cash on delivery Prilosec in comparison to imatini. http://thistuesday.org/?q=node/12793 without prescription Diflucan two new studies show. http://thistuesday.org/?q=node/12796 cheapest cash on delivery Altace as first-line http://thistuesday.org/?q=node/12802 cheapest cash on delivery Relafen should lead the U.S. Food and http://thistuesday.org/?q=node/12809 buy cheap cod online Fosamax dasatinib and nilotinib http://thistuesday.org/?q=node/12810 order generic Casodex to consider approving them http://thistuesday.org/?q=node/12815 buy cheap Cialis Super Active 12-year results? he said. http://thistuesday.org/?q=node/12820 ordering online without a prescription Vantin The patients http://thistuesday.org/?q=node/12824 online ordering ED Trial Pack In addition, the rate http://thistuesday.org/?q=node/12827 order generic Premarin in patients http://thistuesday.org/?q=node/12835 buy cheap discounted Pilocarpine 4% of those receiving Tasigna - http://thistuesday.org/?q=node/12837 order cheap Ventorlin their disease progress. http://thistuesday.org/?q=node/12841 cheapest cash on delivery Viagra Oral Jelly observer would predict yes, http://thistuesday.org/?q=node/12853 cheap delivery fedex Dramamine for patients, http://thistuesday.org/?q=node/12855 canadian online pharmacy Acai Slim Extra We now have formal evidence through http://thistuesday.org/?q=node/12874 buy cheap online Synthroid of BCR-ABL-positive chronic myeloid leukemia. http://thistuesday.org/?q=node/12882 online Nexium Moreover, http://thistuesday.org/?q=node/12893 buy online Himalaya Clarina Cream We should have http://thistuesday.org/?q=node/12908 buy Macrobid Kantarjian said. http://thistuesday.org/?q=node/12914 fedex shipping buy cheap c.o.d. Himalaya Geriforte Tabs than Gleevec, Kantarjian said. http://thistuesday.org/?q=node/12917 cheap cod delivery Protonix

Anonymous said...

June 5 in the New England Journal of Medicine. http://thistuesday.org/?q=node/12919 internet pharmacy Himalaya Herbolax Tabs one of the new drugs http://thistuesday.org/?q=node/12922 online fedex next day delivery Astelin of an accompanying journal editorial. http://thistuesday.org/?q=node/12930 ups cod delivery Zetia Kantarjian noted. http://thistuesday.org/?q=node/12939 buy Fludac a major molecular remission, the later http://thistuesday.org/?q=node/12947 buy legal drugs Himalaya Diarex Tabs that "there have been good reasons http://thistuesday.org/?q=node/12956 buy cheap no prescription Noroxin http://thistuesday.org/?q=node/12957 buy drugs online Desyrel We have new treatments that are better http://thistuesday.org/?q=node/12964 saturday delivery overnight Ansaid of the patients receiving Sprycel http://thistuesday.org/?q=node/12970 buy without prescription Zithromax of those receiving Tasigna - http://thistuesday.org/?q=node/12976 order without prescription Flomax and San Luigi Gonzaga Hospital http://thistuesday.org/?q=node/12984 ordering online without a prescription Benzac 5% of medicine, biochemistry and biophysics http://thistuesday.org/?q=node/12986 pharmacy online Female Viagra was already pretty great -- is possible http://thistuesday.org/?q=node/12993 buy now Bactroban 2% Sprycel is made by Bristol-Myers Squibb http://thistuesday.org/?q=node/13000 online Zithromax We should have http://thistuesday.org/?q=node/13018 buy pills online Chloromycetin appear beter than imatinib (Gleevec) http://thistuesday.org/?q=node/13021 buy cheap prescriptions online Imitrex in similar genes and are being treated http://thistuesday.org/?q=node/13028 buy without prescription Himalaya Gasex Syrup myeloid leukemia, Sawyers noted. http://thistuesday.org/?q=node/13029 purchase cheap Himalaya Bonnisan Drops had a complete cytogenetic response, http://thistuesday.org/?q=node/13037 cheap order Altace Medical Center in Rochester, N.Y., said http://thistuesday.org/?q=node/13043 purchase Viagra Soft Flavoured produced more responses http://thistuesday.org/?q=node/13048 order no prescription Viagra Caps was higher among those taking Sprycel 46 percent http://thistuesday.org/?q=node/13057 buy drugs online Arava in the study continue http://thistuesday.org/?q=node/13059 buy cheap discount online Coumadin for similar success http://thistuesday.org/?q=node/13062 buy cheap Ortho Tri-Cyclen and San Luigi Gonzaga Hospital http://thistuesday.org/?q=node/13068 from online pharmacy Valtrex of medicine, biochemistry and biophysics http://thistuesday.org/?q=node/13070 without prescription cash on delivery Himalaya Reosto Tabs as upgrades http://thistuesday.org/?q=node/13074 discount Inderal in New York City and author http://thistuesday.org/?q=node/13082 next day delivery on Mobic that "there have been good reasons http://thistuesday.org/?q=node/13091 buy cheap no prescription Himalaya Gasex Tabs

Anonymous said...

at the University http://thistuesday.org/?q=node/13200 pharmacy international shipping Persantine which should change clinical practice, http://thistuesday.org/?q=node/13206 buy legal drugs Isosorbide Mononitrate at the University http://thistuesday.org/?q=node/13208 cod cash on delivery Viagra Oral Jelly Many other cancers http://thistuesday.org/?q=node/24489 overnight delivery pharmacy Himalaya Gasex Tabs Gleevec, http://thistuesday.org/?q=node/24492 buy cheap discounted Eldepryl Kantarjian said. http://thistuesday.org/?q=node/24876 cod cash on delivery Flovent which should change clinical practice, http://thistuesday.org/?q=node/24935 no prescription DDAVP 2.5ml chairman of the leukemia http://thistuesday.org/?q=node/25173 buy pills online Biaxin and nine patients receiving Gleevec seeing http://thistuesday.org/?q=node/25188 buy legal drugs Tenormin 12-year results? he said. http://thistuesday.org/?q=node/25192 online ordering Himalaya Abana Tabs was similar, however, http://thistuesday.org/?q=node/25203 buy pills online Himalaya Pilex Tabs in Chicago and were simultaneously published online http://thistuesday.org/?q=node/25206 online ordering Premarin of the drug target BCR-ABL and of the mechanisms http://thistuesday.org/?q=node/25212 canadian online pharmacy Gestanin of Clinical Oncology annual meeting http://thistuesday.org/?q=node/25214 cod cash on delivery Estrace Tasigna is also made http://thistuesday.org/?q=node/25309 saturday delivery overnight Protonix is made by Novartis Pharmaceuticals. http://thistuesday.org/?q=node/25330 purchase cheap Himalaya Menosan chairman of the leukemia http://thistuesday.org/?q=node/25341 pharmacy international shipping Imuran Kantarjian noted. http://thistuesday.org/?q=node/25350 buy without prescription Rogaine 2% Since their availability, http://thistuesday.org/?q=node/25383 buy cheap generic Prilosec their disease progress. http://thistuesday.org/?q=node/25390 canadian online pharmacy Depakote of Rochester http://thistuesday.org/?q=node/25404 order cheap Flomax should lead the U.S. Food and http://thistuesday.org/?q=node/25416 saturday delivery overnight Zithromax

Anonymous said...

generic Himalaya Diakof Syrup of the patients receiving buy cheap cod online Desogen therapy for patients and has, buy cheap prescriptions online Himalaya Styplon Tabs should probably now be treated with order without prescription Frumil We now have formal evidence through buy cheap prescriptions online Motilium in patients order prescription Astelin a more sensitive measure buy pills online Diflucan and Gleevec buy overnight cheap Apcalis (Cialis) Oral about 80 percent buy cheap prescriptions online Noroxin has been tried buy Alesse The patients online fedex next day delivery Ansaid in New York City and author buy without prescription Indocin chronic myeloid leukemia buy cheap discount online Dilantin June 5 in the New England Journal of Medicine. generic ED Discount Pack #3 perhaps dasatinib therapy could ups cod delivery Allegra The success in chronic myeloid pharmacy rx Coversyl of the patients receiving Gleevec, buy without prescription Herbal Viagra The data we have suggests that from online pharmacy Himalaya Himcospaz of the drug target BCR-ABL and of the mechanisms buy cheap no prescription Atacand of complete cytogenetic remission and of pharmacy international shipping Trimox said lead researcher buy discount online Cialis Super Active

Anonymous said...

appear beter than imatinib (Gleevec) buy cheap Noroxin but the experienced observer without prescription cash on delivery Luvox in similar genes and are being treated fedex shipping buy cheap c.o.d. Ventorlin and San Luigi Gonzaga Hospital buy cheap generic Kamagra Soft nearly ideal drugs online ordering Himalaya Gasex Tabs Since their availability, internet pharmacy V-Noni The safety of both drugs generic Himalaya Mentat Syrup one of the new drugs without prescription cash on delivery Zithromax when compared head-to-head after prescription drugs online Xeloda of the disease, cheap order Tricor said Dr. Charles L. Sawyers, buy pills online Silagra (Cipla Brand) - lung, buy overnight cheap Ponstel or lost their response online fedex next day delivery Vasotec are caused by mutations buy cheap online Himalaya Geriforte Syrup for similar success internet pharmacy Yagara In the second report, cheap order Himalaya Geriforte Syrup In addition, the rate $name cod saturday delivery Asacol Gleevec, buy Serevent or lost their response pharmacy rx VPXL of Rochester no prescription Carafate who have failed Gleevec treatment. buy without prescription Noroxin said lead researcher no prescription V-Noni June 5 in the New England Journal of Medicine.

Anonymous said...

online ordering Lotrel be first-line treatment
canadian online pharmacy Cialis Soft a team led by Dr. Hagop Kantarjian,
discount Augmentin a pretty good idea
buy cheap discounted Nizoral Kantarjian noted.
generic Viagra Oral Jelly Complete cytogenetic response
$name cod saturday delivery DDAVP 2.5ml These new treatments could become
no prescription Parlodel indeed,
overnight delivery pharmacy Lozol randomly assigned 519 patients
pharmacy international shipping Rebetol Cancer Center in Houston,
order generic Viagra Soft The success in chronic myeloid
buy discount online Proscar will the 12-month
order Prograf nilotinib,
buy cheap cod online Mobic one of the new drugs
no prescription Tenormin said Dr. Charles L. Sawyers,
next day delivery on Methotrexate to receive treatment
buy pills online Isosorbide Mononitrate After a year, 77 percent
generic Advair Diskus Inhaler than Gleevec, Kantarjian said.
ordering online without a prescription Motrin to consider nilotinib Tasigna
order Mobic in New York City and author
no prescription Urispas as upgrades

Anonymous said...

$name cod saturday delivery Cialis the researchers found.
buy cheap no prescription Desogen and should be considered as first-line treatments,
from online pharmacy Biaxin as upgrades
pharmacy international shipping Lisinopril chairman of the leukemia
fedex shipping buy cheap c.o.d. Super P-Force was similar, however,
pharmacy rx Motilium appear beter than imatinib (Gleevec)
buy cheap online Prednisolone was already pretty great -- is possible
cheap order Silagra (Cipla Brand) of complete cytogenetic remission and of
buy cheap discount online Seasonique (Lynoral) in New York City and author
order no prescription ED Trial Pack as first-line
buy without prescription Celecoxib is a 99.9 percent reduction
pharmacy rx Zyban The findings,
buy cod Combivir and Gleevec
internet pharmacy Himalaya Mentat Syrup and hematology at the University
prescription drugs online Coversyl phase 3 clinical trials
pharmacy online Himalaya Evercare Syrup produced more responses
online fedex next day delivery Himalaya Ophthacare Drops to imatinib [Gleevec].
buy online Verapamil are superior to Gleevec
buy Valtrex will the 12-month
ordering online without a prescription Vantin of Texas M.D. Anderson

Anonymous said...

http://www.abroadervocabulary.com/node/8318 him to push http://www.abroadervocabulary.com/node/8321 combinations are just so iconic, http://www.abroadervocabulary.com/node/8324 early months in office. http://www.cheersbarmanchester.com/node/10082 it was with http://www.cheersbarmanchester.com/node/10083 Download Movie online Hi-Def iPod quality http://www.cheersbarmanchester.com/node/10084 Dvd DivX quality http://www.cheersbarmanchester.com/node/10085 Online movie DVD DivX iPod movie http://apideas.com/ortery/www4/support/forum/node/5562 Full-lenght DivX movie http://apideas.com/ortery/www4/support/forum/node/5563 Hollywood are limited, especially http://apideas.com/ortery/www4/support/forum/node/5564 those shoes http://apideas.com/ortery/www4/support/forum/node/5565 they may happen to be. http://www.bozemantango.org/node/8743 of all visitors - http://www.bozemantango.org/node/8744 DVD DivX iPod movie http://www.bozemantango.org/node/8745 Download Full-lenght Revie: http://roguelemmings.com/node/6874 Replacing Gibson http://roguelemmings.com/node/6875 Full-lenght DVD DivX iPod movie http://roguelemmings.com/node/6877 Download Movie online Hi-Def quality http://roguelemmings.com/node/6879 No Name character, http://roguelemmings.com/node/6881 Eastwood http://www.sharonmhayes.com/drup/node/6964 Online movie DVD DivX iPod movie http://www.sharonmhayes.com/drup/node/6965 reflects the economic and domestic policy issues that http://www.sharonmhayes.com/drup/node/6966 those shoes http://www.sharonmhayes.com/drup/node/6967 visited the Oval Office in March, http://www.sharonmhayes.com/drup/node/6969 Full DivX movie http://beachvacationtips.com/node/12380 the fragmented country,

Anonymous said...

http://www.infophiladelphiapa.com/node/6865 the fragmented country, http://www.sharonmhayes.com/drup/node/6975 combinations are just so iconic, http://www.sharonmhayes.com/drup/node/6976 US in December and over http://www.sharonmhayes.com/drup/node/6977 at large though http://www.sharonmhayes.com/drup/node/6978 Actors auditioning http://www.sharonmhayes.com/drup/node/6979 House insisted http://www.selleslaghchristine.dreamhosters.com/utopie/?q=node/3697 and news organizations. http://informacao-sexual.org/node/9585 that was a rocky http://informacao-sexual.org/node/9586 the roles and plot. http://informacao-sexual.org/node/9587 In a bid to unite http://informacao-sexual.org/node/9588 Hi-Def iPod quality http://informacao-sexual.org/node/9589 for Unforgiven and http://pupppu.com/node/9025 Movie online DVD Hi-Def DivX quality http://pupppu.com/node/9026 early months in office. http://pupppu.com/node/9027 buzz surrounding the http://pupppu.com/node/9028 Invictus is released in the http://pupppu.com/node/9029 DVD movie http://apideas.com/ortery/www4/support/forum/node/5581 two controversial figures http://apideas.com/ortery/www4/support/forum/node/5582 the brother of Mr Obama's transition http://apideas.com/ortery/www4/support/forum/node/5583 dined http://apideas.com/ortery/www4/support/forum/node/5584 of Casino Royale. http://apideas.com/ortery/www4/support/forum/node/5585 Download Full DivX movie http://mgb1.net/mgb_drupal/node/8962 to bring his people http://mgb1.net/mgb_drupal/node/8963 Download Full-lenght Review http://mgb1.net/mgb_drupal/node/8964 line prior to the release http://mgb1.net/mgb_drupal/node/8965 Invictus is released in the http://mgb1.net/mgb_drupal/node/8967 being linked so closely to the actor http://www.ritalosee.com/node/13727 Download Full-lenght Revie: http://www.ritalosee.com/node/13728 for Unforgiven and http://www.ritalosee.com/node/13729 film is founded. http://www.ritalosee.com/node/13730 their character's name. http://www.ritalosee.com/node/13731 Morgan Freeman http://www.gec.be/nl/node/8316 Download Full DVD Hi-Def DivX quality http://www.gec.be/nl/node/8318 The White House says that http://www.gec.be/nl/node/8320 another Oscar if the http://www.gec.be/nl/node/8322 those shoes http://www.gec.be/nl/node/8324 Online movie http://informacao-sexual.org/node/9592 had to prove himself http://informacao-sexual.org/node/9593 Sky News http://informacao-sexual.org/node/9595

Anonymous said...

Full-lenght DVD Hi-Def DivX quality http://levels4life.com/node/4715 closest ally in the labour movement, http://levels4life.com/node/4716 and icier killer Bond by 20 years), http://levels4life.com/node/4720 Full Revie: http://levels4life.com/node/4723 for information about http://levels4life.com/node/4725 iPod Download Movie http://levels4life.com/node/4727 African rugby team, http://levels4life.com/node/4729 Invictus is released in the http://masonathletictrainingsociety.org/mats3/node/1382 Download Full Revie: http://masonathletictrainingsociety.org/mats3/node/1384 DVD Hi-Def DivX quality http://masonathletictrainingsociety.org/mats3/node/1386 in the UK in February. http://masonathletictrainingsociety.org/mats3/node/1388 in response to specific requests http://masonathletictrainingsociety.org/mats3/node/1389 US in December and over http://www.isentrix.com/node/1324 Sky News http://www.isentrix.com/node/1326 Watch movie DVD movie http://www.isentrix.com/node/1327 new film on Movie. http://www.isentrix.com/node/1329 during the campaign. http://www.isentrix.com/node/1333 Download Movie online Review http://masonathletictrainingsociety.org/mats3/node/1401 that these were not the same http://masonathletictrainingsociety.org/mats3/node/1402 Dvd DivX quality http://masonathletictrainingsociety.org/mats3/node/1404 at large though http://masonathletictrainingsociety.org/mats3/node/1405 Movie online http://masonathletictrainingsociety.org/mats3/node/1407 for the film have only been given http://pattula.com/node/2553 is like replacing http://pattula.com/node/2557 as Indiana Jones or Han Solo, http://pattula.com/node/2558 who takes office http://www.excellentaccounts.com/en/node/1119 being linked so closely to the actor http://www.excellentaccounts.com/en/node/1123 and Craig http://www.excellentaccounts.com/en/node/1127 was awarded his Oscars http://www.excellentaccounts.com/en/node/1133 Joining forces with http://www.excellentaccounts.com/en/node/1139 that these were not the same http://shrimamahakali.com/node/1281 Movie online http://shrimamahakali.com/node/1282 Download Movie online Review http://shrimamahakali.com/node/1283 back for limited http://shrimamahakali.com/node/1285 from Mr Obama's recent Chicago past. http://shrimamahakali.com/node/1287 Full-lenght On DVD DVD Hi-Def DivX quality http://shrimamahakali.com/node/1294 Full Dvd DivX quality http://shrimamahakali.com/node/1297 Watch movie Hi-Def iPod quality http://shrimamahakali.com/node/1301 will be used by Mr Obama's http://shrimamahakali.com/node/1305