Personally I'd love to see more wider usage of S/MIME and/or PGP.
What I take issue with actalis, is that they don't just sign your private key but you actually get the private key from them. It then depends on how much you trust the issuer. To me a key that wasn't always in your possession is basically compromised from the start.
(Although, I am also using protonmail's pgp, which arguably violates this rule as well, their transparency is more trustworthy to me. )
Personally I'd love to see more wider usage of S/MIME and/or PGP. What I take issue with actalis, is that they don't just sign your private key but you actually get the private key from them. It then depends on how much you trust the issuer. To me a key that wasn't always in your possession is basically compromised from the start.
(Although, I am also using protonmail's pgp, which arguably violates this rule as well, their transparency is more trustworthy to me. )