I just wanted to express my support for Photuris: IMHO, it looks like a reasonable solution. I'm comfortable with Photuris; my personal feeling is that it should be allowed to advance... Are there any substantive objections to Photuris, in terms of the ipsec requirements for a key management protocol?