SSL is a pretty simple solution enabling trust and authentication between Internet users by using public key cryptography. However, that trust all hinges upon trusting the certificate authorities to operate their businesses appropriately. Comodo, one of the big three certificate authorities (the others being GoDaddy and VeriSign), recently admitted to have issued certificates to an Iranian actor for such major sites as Google, Skype and Yahoo. Using a few other simple techniques, a digital miscreant could redirect your browser to their own "fake" site and present you with their ill-gotten, but "trusted" certificate upon which you login giving them your credentials. This has called into question once again the validity of the centralized trusted agent, especially when there appear to be little in the way of oversight on the matter.