Fair point. While I think some concern is warranted in Microsoft's case given their history, FUD is FUD. Apart from whether MS will change its policies, I'm interested to see what the responses will be if the private signing key is compromised.