While public encryption has gone from this to SecureSocketsLayer?, SecureShell? and into almost every browser, this was where the legal issues first came out.
PGP incorporated a WebOfTrust in its design. PGP users were encouraged to digitally sign the public keys of other PGP users they trusted. The number of trusted signatures was used to determine the trust level of unfamiliar public keys.
Summarize discussion so far