Thomas Grant Edwards says: > Right - using DH exchange is probably appropriate in situations where > there is no pre-established credentials for the party on the other > machine. D-H also provides perfect forward secrecy, which is a reason to use it even if there is already an established set of credentials. .pm