@cwebber Security worries drive attention to - and concentrate failure points in - SSL and DNS.
Browsers that assume that SSL means secure train users in same - nevermind that most security isues are soft (reused passwords and social engineering) not hard (cracked crypto) in nature.
For the fediverse, I don't know what our options are.