SSL/TLS sucks. It really fucking does.

Not the protocol itself, mind you - the infrastructure around it.

It is dependent on large corporations that trade strings of random numbers for copious amounts of cash, do pretty much nothing and are often in cahoots with persons and organizations they claim to protect you from.

Granted, companies like Let'sEncrypt make it suck a little less, but guess what - it's still one huge organization. In a lot of ways, it's even worse. You wouldn't want to bet the future of the Internet on one organization, don't you.

We got DANE standardized. When are we going to start implementing it?