What is it about?

Software vendors maintain their own certificate root stores, which serve as the anchor of trust for server-authenticated network connections. A detailed look at these root stores show significant differences between them. The trusted organizations are different. The trusted certificates are different. And even the trust and inclusion policies are different.

Featured Image

Why is it important?

The trust anchor (root stores) dictate the realm of trusted certificates worldwide. A misplaced trust in a root certificate can have significant impact on the secure connections.


The paper raises important questions to invoke wide community discussions in the area.

AbdelRahman Abdou
Carleton University

Read the Original

This page is a summary of: Position Paper: Certificate Root Stores—An Area of Unity or Disparity?, August 2022, ACM (Association for Computing Machinery), DOI: 10.1145/3546096.3546110.
You can read the full text:




The following have contributed to this page