key pairs. TLS relies upon this. This implies that the PKI system (software, hardware, and management) can be trusted by all involved.

A web of trust decentralizes authentication by using individual endorsements of links between a user and their public key. PGP uses this approach, in addition to lookup in the domain name system (DNS). The DKIM system for digitally signing emails also