> Root C(ertificate)A(uthorities) are a failure and acts of oppression I don't think they're a failure per se. They do what they're designed to do very well. Trouble is, it's what the designers want(ed), not what you (or I) want(ed).
CA-hierarchy-secured communication is a fail for me because it is completely unable to protect against the actors I am most concerned about, which are large corporations and governments: the ones who are the roots of the (so-called) trust hierarchy, the kind of entity which can easily get certs for *.com and the like. It's putting the foxes in charge of securing the doors on the henhouse. /~\ The ASCII Mouse \ / Ribbon Campaign X Against HTML mo...@rodents-montreal.org / \ Email! 7D C8 61 52 5D E7 2D 39 4E F1 31 3E E8 B3 27 4B
