Please -- the spki list is *not* a place for general discussions of RSA, public key infrastructures, etc. Let's keep the list on-topic -- that being the design of the spki spec -- and put general cryptography discussions in a more appropriate forum, such as cryptography@c2.net. Wearing my co-chair's hat.... --Steve Bellovin