Frankly, I'm frustrated that ICANN has allows so many registrars and SSL cert providers. There are over 1400 CAs trusted by Windows in 2010.
Any one of those CAs can be compromised and their root cert used to sign fake certs for any site on the internet, instantly having Windows trust those certs.
The whole security model on the internet is just broken. We don't have secure DNS or reliable Certificate Pinning.
It would be a monopoly if they didn't make it basically open. Or monopoly-ish. Not an open market.
Frankly, in this case, a monopoly, like you want for healthcare, seems like the better play. The fees should either be free or extremely low, only enough to handle the costs of administration and hardware required.
Universal coverage does not imply monopolistic treatment. Further, most countries with universal health coverage also have private systems too.
Like Panama... good healthcare for free or suckers can pay for private American healthcare from Johns Hopkins.
Or Bosnia, the only place I know of where the "free" is way worse than private to an insane degree, and that's because of a war so at least that's an excuse.
Johns Hopkins is the hospital that thought that nut job who thinks the pyramids were grain stores and all kinds of whacky things led their surgical department. You'd have to be insane to get treated at a hospital letting crazies like that even work there let alone run departments.
(Working there as a janitor would be okay, just not in healthcare portions of the business.)
That's the kind of hospital that removes your spleen because "if God wanted you to have it, he'd not have made it make you sick." Those people scare me.
using letsencrypt right now on my home server, btw. Have a cron job set up to update the cert every month or so, with an easy tool: ACME. Simpler than the 'standard' tool from Lets Encrypt, if you ask me. Go check it out at https://github.com/hlandau/acme ;-)
I had a good laugh when I spotted the ".travis Try to speed up travis" Apparently I'm slowing things down, tho I do agree that speeding me up would be a good thing :-P
I understand the additional points such as automated validation and the open records, but you can get free SSL certificates through StartSSL. The companies who don't want to pay for an SSL certificate (or do the research to find a free one) are most likely using shared hosting or some kind of managed hosting that costs extra to enable the SSL certificate anyway. So if they aren't going to pay the money for the cert, I can't see them paying extra per month to enable the free cert on their hosting.
Looks like your connection to MangoLassi was lost, please wait while we try to reconnect.