> Perspectives gives users the ability to pick a group they trust (e.g., the EFF, Google, their company, their university, their group of friends, etc.) and trust no one else.
In a company setting the company is going to be the new certification authority, because it can configure browsers to use its own notary service. An ISP could have leverage to configure the browsers of its customers (help pages, setup apps, etc). A country can mandate using the country's notary, as some countries mandate installing the state certificate to be able to MITM https.
It could work if browsers agree to use at least a not small pool of well known notaries. An adversary should hack many of them and companies and ISP could not limit users to their own notaries. To have a passable chance to be enforced those notaries must be hardcoded in the binary. But in some countries that would lead to mandatory use of browsers patched by the state.
In a company setting the company is going to be the new certification authority, because it can configure browsers to use its own notary service. An ISP could have leverage to configure the browsers of its customers (help pages, setup apps, etc). A country can mandate using the country's notary, as some countries mandate installing the state certificate to be able to MITM https.
It could work if browsers agree to use at least a not small pool of well known notaries. An adversary should hack many of them and companies and ISP could not limit users to their own notaries. To have a passable chance to be enforced those notaries must be hardcoded in the binary. But in some countries that would lead to mandatory use of browsers patched by the state.