The high profile compromise of Comodo, a Certificate Authority, has raised the spectre of a security compromise in one of the Internet s few security pillars: SSL (Secure Sockets Layer) encryption. Enterprises are in the difficult position of having to migrate away from Comodo a top CA that has admitted to a serious security breach. Blacklisting a major CA or switching, wholesale, to a new CA may require hundreds of hours of work. According to Paul Turner, the vice president of product and customer solutions at Venafi, however, most organizations have only a cursory understanding of their own certificate infrastructure.
Source: https://threatpost.com/forged-certificates-five-steps-secure-your-enterprise-032411/75065/