Joel Jaeggli wrote: <snip> > The bigger issue is that users simply don't trust any kind of "official > communication" anymore and I don't see anything other than pki that > could actually restore that. PKI alone won't solve it, but we are not trying to "fix" phishing here (good thought though!). I agree. Thing is, user-trust or no user-trust, they click by the masses. Gadi.