Sean Donelan wrote:
You'll notice there still isn't a CA trust list for use in the USG :-)
It merely means that PKI does not have its own security and relies
on trust for all the CAs (not only the root ones), which means PKI
is as secure as the plain Internet, which is secure if all the ISPs
are TPPs (trusted third parties).
If you can assume all the CAs are TPPs, you can also assume all the
ISPs are TPPs.
About 95% of the TLS certificates globally are ultimately signed by about
six CA organizations depending how you track ownership. (I know,
multiple "abouts" in that sentence). The long tail of global business,
means most operating systems ship (or after the installation autoupdate)
with 100+ trusted certificate authorities by default.
The number of blindly trusted root CAs is irrelevant because PKI
with just one not-so-trustworthy root CA is bad enough.
PKI is just insecure.
Masataka Ohta
