Le 01/08/13 06:52, Jeremy Baron a écrit :
We (society, standards making bodies, etc.) need to do more to reform the current SSL mafia system. (i.e. it should be easier for a vendor to remove a CA from a root store and we shouldn't have a situation where many dozens of orgs all have the ability to sign certs valid for any domain.)
I'm not sure how much we (Wikimedia) can do about that though.
Potentially similar minded foundations could form a new foundation that would be their SSL authority :-] I am not sure whether it would be cost effective though.