UK Friendly for e-commerce?

[Padgett 0sirius]

>Yes, is is in <http://www.cs.man.ac.uk/~chl/scenarios.html#scenario.15>

(typo corrected) No not quite - that scenareo refers to the aulden PGP
single key. What I was referring to is the potential for deliberate use of
a public "signature only" key to encrypt a message which LEA is then led to
believe they need.

The user is unable to decrypt and provide the plaintext information because
their software "knows better" and thus the only option is to surrender the
private *signature* key on demand.

Personally I have never cared for "dual key only" requirements because
essentially it is saying "you can't trust one". 

Do believe that in the future people will probably have one "personal" key
used for signing and any number of "commercial" keys (employer, IRS/Inland
Revenue, charge cards) used for encryption.
      	A. Padgett Peterson, P.E., CISSP: Cybernetic Psychophysicist
 Anti-Virus, Cryptographics, & Antique Radio Researcher
http://www.freivald.org/~padgett/index.html
 mailto:padgett@gdi.net     PGP 6.5 Key on request