[lxgr]

> the federation protocol could easily define how the authoritative hash/key for each user would be shared based on their e-mail

That really doesn't sound that easy in a federated protocol.

[error503]

Really? It doesn't seem to me like it gets any more trivial than 'hit DNS for the domain to find federation server, send a GET request' to me. You could even do the whole thing with DNS, though that has privacy implications. What am I missing?