Comment Re:Um... (Score 1) 214
That doesn't make any sense. SSL assumes you know VeriSign's public key and it is incorruptible. The bank's certificate would be signed with VeriSign's key. The whole point of SSL is that VeriSign is the weak point, and you have to assume that they are unspoofable.