How can we express a signer's identity to an end-user, in a way that's not vulnerable to the problems that doomed EV certificates?

[lrosenthol]

From #12

How can we express a signer's identity to an end-user, in a way that's not vulnerable to the problems that doomed EV certificates?

[lrosenthol]

This is a definite area of concern, but not one that is new to cryptography.

I will say that one direction that seems to have emerged recently, and has been implemented by the CAWG Identity Assertion is connecting authenticated social media (etc.) IDs with signing keys (either as X.509 or Verifiable Credentials).