Chris, OTOH, it doesn't matter if you can document. The spec says Confidentiality for ebXML Payload Containers MAY be provided by functionality possessed by a MSH. Payload confidentiality MAY be provided by using XML Encryption (when available) or some other cryptographic process (such as [S/MIME], [S/MIMEV3], or [PGP/MIME]) bilaterally agreed upon by the parties involved. Since XML Encryption is not currently available, it is RECOMMENDED that [S/MIME] encryption methods be used for ebXML Payload Containers. The XML Encryption standard SHALL be the default encryption method when XML Encryption has achieved W3C Recommendation status. This says that encryption ...MAY be provided by functionality possessed by a MSH... Can it get much clearer than that? If you want to put yours in an application, be my guest. David.