If selling certificates becomes like selling domains...
... security will go astray.
It looks that Mozilla doesn't understand certificates have a dual use. First, ensure the identity of a site. Second, encrypt the communication. Mozilla looks focused on the latter, but encryption doesn't make you safer if you don't know who you're talking to really.
Today getting a certificate is expensive because there *should* be some vetting before issuing the certificate. I'm sure the day certificates are sold for some pennies each, the "godaddy" of certificates will sell millions of them without the minimal check, just to make money, exactly how domain are sold to people using blatantly fake registration information. It will become easy to obtain a certificate for any domain you like, but maybe the known brands.
Then, certificates will become pretty useless for both ensuring identity and encryption.
Biting the hand that feeds IT
