I think John is also arguing that he'd like to change the key servers to
have some location-based trust.
If people thought it were useful, it'd be something to add, and it needn't
be complicated. For example, a keyserver could send signed probe messages
with confirmation URLs to all of the addresses associated with the key,
and add a signature that says "addresses all responded". For that matter,
if a domain wanted to sign its users's keys with postmaster@domain, why
not.
Regards,
John Levine, johnl(_at_)taugh(_dot_)com, Taughannock Networks, Trumansburg NY
Please consider the environment before reading this e-mail.