Well, there have been other free certificate authorities in the past.
So the public key is available in this store of certificate authorities.
But it's certainly not - you don't need a certificate authority.
But shouldn't there be some standard for what a certificate authority requires?
So it was many characteristics of this one certificate authority.
So it is a concern that many governments do control certificate authorities.
And they were able to create a fraudulent certificate authority.
A company needs to be sure that their keys are registered with a certificate authority.
There is already a process in place to handle compromised certificate authorities.
In contrast, the web of trust system, which do not use central "certificate authority" at all.