On Feb 2, 2014, at 10:54 AM, Scott Brim <scott.brim@xxxxxxxxx> wrote: > Even if it's easy to use (and I'm grateful for enigmail and other > tools), PGP still has the problem of trust dilution. Trust dilution really isn't a problem for most of the things you'd want to use PGP for if it were ubiquitous. For the cases where it is, like bank transactions, stronger key validation is (a) needed and (b) possible, because its use cases provide the leverage needed to make it work. The problem with PGP now is that it's _not_ ubiquitous, so the only thing you can use it for is use cases where you really need strong trust.