guys:
we all know that a ca-signed certificate can provide authentication because the
ca is trustable, by using ca-signed certificate, one is saying i am somebady
because the ca says so. but it seems that a self-signed certificate _cannot_
provide any authentication at all, because by using
Recall that even the 'ca' certificate is ultimately self-signed. So
your question is really about why some self-signed certificates are
more trusted than others.
In some fashion you could ask this question about any typical 'brand
name' store. Why is Store-X trusted more than Store-Y?
