Tip:
Highlight text to annotate it
X
This change can be arbitrarily long.
As long as all the keys along the chain are consistent and chained together in the right way,
as long as we start with a root that we trust already,
we can validate certificates signed by any of the parties along the chain.
We could, in theory, use Google to validate a new certificate
and add another layer to the chain.
What I want to do in the forums is encourage some open discussion,
encourage you to find interesting certificate chains on the web,
see what the longest one you can find is, and post those in the forum
as well as any interesting things you find along these paths.