> The problem is more social than technical - to have working CAs, they must > be CAs that most people in the web of trust trust. Also, some people argue that X.509 is more interesting for commercial trust centers than OpenPGP because the hierarchical PKI calls for a central trust authority in a way the web of trust approach does not. Tschuess, Ralf