Quite a few of Tunisian websites are signed by "Agence Nationale de Certification Electronique".
Also, there so many intermediate CA's that I find it hard to believe that the system isn't broken:
https://www.eff.org/files/colour_map_of_CAs.pdf (via https://www.eff.org/observatory)
We already had UAE government successfully MITM-ing SSL by forcing CyberTrust-delegated CA to forge a certificate:
http://www.schneier.com/blog/archives/2010/09/uae_man-in-the...
Quite a few of Tunisian websites are signed by "Agence Nationale de Certification Electronique".
Also, there so many intermediate CA's that I find it hard to believe that the system isn't broken:
https://www.eff.org/files/colour_map_of_CAs.pdf (via https://www.eff.org/observatory)
We already had UAE government successfully MITM-ing SSL by forcing CyberTrust-delegated CA to forge a certificate:
http://www.schneier.com/blog/archives/2010/09/uae_man-in-the...