I agree with Edward Jaffe---He put the matter more politely---that botching an SVC does not usually have the disastrous systemic consequences that botching a PC-PR construct can have. Thecthrust of my comments was that the preoccupation of auditors with SVCs, all but to the exclusion of concern with PC-PR constructs, is both unfortunate and shortsighted. In the cryptography community it is a commonplace that one must never assume that the opposition is not smart enough to make effective of some piece of cutting-edge technology. It is better, i.e., safer, to assume that they are as smart as you are.
John Gilmore Ashland, MA 01721-1817 USA ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@bama.ua.edu with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html