One important point about SSL is that it is not purely limited to WWW. I will be implementing SSL for SMTP conversations some time in the next couple of months. I am actually trying to find out what port people would wish that I used. This is also a disadvantage, in that the same functionality is being standardized at a different layer, to wit the IP security stuff.