7 Mar
2012
7 Mar
'12
12:59 a.m.
Trent W. Buck <trentbuck@gmail.com> wrote:
Nitpick: you're talking about X.509, not TLS.
Even in X.509, there is provision for bridging certificates, cross-certificates, etc. I haven't investigated how these work; they aren't equivalent to a PGP-style web of trust, but I understand that CAs can certify each other. The farthest I have come along this road was to create my own CA and to issue certificates for my hosts.