Steve and Bob,
It seems to me that we would be remiss if we tried to INSIST
that users of PEM agree to be bound by their use of digitally
signed messages. I think this is not something we can enforce
in any reasonable fashion. I think case law will have to
evolve to demonstrate the utility of PEM's authentication
and the IPRA/PCA/CA structure in that regard. I cannot imagine
that ISOC or the various PCAs would want to inject themselves
into the middle of lawsuits concerning the binding nature of
PEM transactions.
I certainly agree that we would similarly not want to leave
the impression that we think PEM should NOT be used for such
purposes (sorry for the double negative).
Is this view at various with yours?
Vint