>OpenPGP *is* and IETF standard. It has the same standards level as >S/MIME and PKIX does. You may not use it, and your company may not >sell it, but please stop pretending it is not an IETF standard. Paul as a matter of FACT, PGP is NOT an IETF standard. There are in fact practically no IETF standards. IP and TCP being some of the few exceptions. SMTP is a standard but HTTP still is not. PGP is currently a proposed standard. Recognition as an actual standard is far from certain and depends in part upon market acceptance. The status of market acceptance of PGP and PKIX is NOT equivalent in any degree. In addition X.509v3 of which PKIX is a profile IS a standard recognised by the International Standards Organization. It is thus not a 'pretense' to claim PGP is not an IETF standard. X.509v3 is however a longstanding ISO standard that the IETF has already incorporated into widely deployed standards proposals. Phill
Attachment:
smime.p7s
Description: application/pkcs7-signature