The SSL encryption system is only as strong as it’s weakest link, and right now, all eyes are on Symantec. I don’t understand why they should be treated any differently than one of those fly by night Chinese companies that gets revoked after 1 or 2 strikes. Revoke Symantec’s root certificates. Force all their clients to replace all their certificates with new ones from more reputable vendors. Then the clients can file a class action suit against Symantec for unethical and sloppy processes, thus violating the terms of their contract.
At least 108 Symantec certificates threatened the integrity of the encrypted Web.