> What, do you mean, strong security? > > Given that CAs of PKI can be compromised as easily as ISPs > of the Internet, PKI is merely weakly secure as weakly as > the plain Internet. i would not word like this, you are asking for flamewar :-) i would say: - technologies that use hierarchical structure to combat scalability problem is very tough to make a successful deployment - key distribution problem is almost like NP-complete problem, it is way too difficult that you need some assumption to relax it (e.g. ssh first-time contact weak authentication) you now know which RFC i do not really love :-P itojun _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf