If you mean widespread, point to point / peer to peer IPsec - yes, there is
a distinct lack of (free, easy, global) PKI out there.
There are steps in the right direction though, such as MS's Direct Access
On Oct 31, 2010 12:02 AM, "Masataka Ohta"
I would be quite curious to know your definition of failure, given that
IPsec is currently deployed, and working in "more than a few" deployments
Sorry for lack of clarification.
My context is IPsec in the Internet, which excludes VPNs.
Do you know some major application over the Internet using IPsec
with transport mode?
Ietf mailing list