One idea I've wondered about is whether social networks (perhaps with
real-time video conferencing) can be leveraged to assist web-of-trust
style key signing.
In theory perhaps, but I can't think of any real social networks that
I would trust enough to use for key bootstrapping.
They all have business models that depend on maximum user data which
leads to vast numbers of Facebook "friends" who you barely know, and
abominations like LinkedIn's new MITM IMAP proxy.
ietf-smtp mailing list