Geminispace is More Trustworthy (and Private) Than the World Wide Web
Unlike the Web, Geminispace does not route the lion's share of traffic through a collective of spying companies
THE OTHER day we said that according to Lupa (which surveys Gemini capsules) only 23 known capsules remained tied to Let's Encrypt. As of today or last night that number is down to 22. Quoting the latest: "2591 (89.7 %) capsules are self-signed, 22 (0.8 %) use the Certificate Authority Let's Encrypt, 274 (9.5 %) are signed by another CA (may be not a trusted one)."
The issue isn't Let's Encrypt per se. It's the centralised Certificate Authority (CA) system. If the CAs were not centralised, then fine, but in practice we know that the centralised systems constitute some of the very fake security that Andy moaned about only hours ago.
The Web could be a tree of trust, but in practice it's a cabal or cartel of companies - a root certificate does not make it a tree - claiming to possess the all-seeing authority (it sees which sites are accessed and a lot more through the CAs or CA queries/lookups). Thankfully, Geminispace has moved away from this nonsense and centralised CAs are becoming rarer. █