good key distribution & cert issuing/renewal/r (Score 1)

I think its pretty innovative, and contributes something positive. A lot of the comments are on the lines of pgp / whatever respected cryptographic tool will do a decent job on signing / encypting / decrypting - we can all agree on this However where we need to evaluate systems is on how easy it is to sign a message, get a key pair, to get the certificate of your correspondent, renew their certificate etc The email proxy server architecture seems a really neat way to handle the cryptographic functions and the client side of certificate management - the central certificate repository seems a good way to distribute certs and handle cert status I dont think there's anything about the system that is fundamentally insecure but I would be interested in the trust relationship between the email client and proxy server is implemented. Also will the centralised repository scale if the system becomes popular? Imagine how many certificate issuing & status requests that thing would need to cope with if it got popular