> On Thu, Jun 02, 2005 at 03:26:14PM -0400, Thor Lancelot Simon wrote:
>> You can get all the algorithms from OpenSSL, which is already essentially
>> BSD licensed.  The real work is in two areas:
>>
>> 1) Parsing and generating the OpenPGP message format
>
> That shouldn't really be too much of a problem, it's just a lot of work, right?
>
>> 2) Getting key policy right.  This is one of the things that GnuPG does
>>    worst, and an area where substantial improvement could be made.
>

I have to admit, I'm unclear on what you mean by "Getting key policy 
right".  Can you elaborate?