> There's no reason my mail client shouldn't validate the signed e-mail > came from the same entity as the signed web site I'd previously logged > into, and give me a green light that the link actually points to said > same web site with the same key. It should be transparent, and secure > for the user.
my paranoid side is not comfortable with the certs that come for free with my browser. see the ietf dane wg. randy
