That's the point I was making, we won't know, we'll have to come up with a way of dealing without a central authority because the people who want to be our current central authorities are starting to show signs of being compromised.
Also yes you could produce a certificate for google.com by trying to MITM between me and my ISP, but if you managed to do that, I think I'd have bigger problems to worry about than getting to the real google.com.
Also yes you could produce a certificate for google.com by trying to MITM between me and my ISP, but if you managed to do that, I think I'd have bigger problems to worry about than getting to the real google.com.