> 2.6.) Does SOI need to provide a formal proof of security? (Is this > a "must have" or a "nice to have"? What are we willing to trade-off > for having a formal proof of security?) A formal proof of security is a "very nice to have". It will calm some people down immensely. Dan