[samb1729]

> So it seems like the sole basis for this action is TrustCor's mere affiliation with another company that does TLS interception?

The CA representative was presented with the challenge of proving their CA should be trusted, and failed it. This isn't a case of "presumed innocent until proven guilty" as in a criminal trial, so looking at it through that lens isn't very helpful.

I think it is reasonable to conclude from Rachel's communications that TrustCor cannot be clearly identified as a trustworthy root CA, and thus they have been removed.

[Ajedi32]

Maybe that's a reasonable standard, but if that's what they're using now it's still pretty noteworthy, since like I said I can't recall any instance of a CA being removed for that reason before.

In the past there's always been some sort of egregious security issue that calls into question the security of the CA certificate itself.