exim@??? (Kurt Lieber) writes:
> I agree that there is a certain element of risk associated with placing
> the management on the server instead of the client. However, you have to
> balance that with the difficulty of deploying a PKI infrastructure and
> teaching people to effectively use public/private keys to encode, sign and
> decode messages. By placing a portion of this on the server, you obviate
> a great deal of that training and reduce the complexity of the system
> significantly. I would argue that the benefits of such a system outweigh
> the risks.
An alternative is that you could use a local keyserver, to which your users
all export their (signed, etc) public keys.
Or go the whole hog and set up a publicly accessible keyserver, extend the
web of trust :)
-srs
