I've seen a lot of "standards" that have little application in the
real world simply because they don't address real-world issues. I'm
not saying that IPP is headed this way yet, but we need to balance
the goals of IETF against those of the end-users of these standards.
To require mandatory support for N different authentication or
encryption standards will not sit well with implementors or end-users.
OTOH, if you give us a choice of options that meet the different needs
and require support for at least one of them, then I think you'll get
much more support from folks in general while still meeting the goals
set forth by the IETF.
-- ______________________________________________________________________ Michael Sweet, Easy Software Products firstname.lastname@example.org Printing Software for UNIX http://www.easysw.com