In A Perfect World...


Five unrealistic rules of public-key use, termed "compliance defects" by Don Davis:

Authenticating the user (issuance)

Authenticating the CA (validation)

Certificate revocation lists (revocation)

Private-key management (single sign-on)

Passphrase quality (password changing)