Why not use Cryptography? Not allowed in all legislations Too complicated and error-prone for the masses Too much overhead Secrets to be stored on many insecure machines ? Whole system compromised Abuse of stolen keys difficult to detect Even after >20 years of PKC still no common Infrastructure and PKI ? Organizational Security is the better choice |