Warning about a new public Key
We should have a warning if a second pk appears. The warning include a motivation for a out-of-band verification (like phone call etc.). An other option would be a mail response. Here we have to consider different scenarios. Has the adversary access to the email account?