It would be extremely nice to be able to "sign" binaries.  That is, if
RSA wasn't hard to export, or we had it on both US and non-US
distribution points, signed binaries would be a real plus.

Then, you could store the keys you accept in the kernel, have the
binaries contain a signature and the hash (along with other things you
might want to keep around about the source) and let the kernel verify
the signature as trusted or untrusted.

--Michael