Hi, I wanted to start a thread about this blog post I just finished writing: https://blog.torproject.org/blog/detecting-certificate-authority-compromises-and-web-browser-collusion It seems timely to discuss a new metric for trust that is not a simple boolean. All the best, Jake