Comment Re:Notaries... (Score 3, Insightful) 189
You don't really need to:
You are expected to have more than one notary, so you will only trust the certificate if a majority of your notaries say it's legit.
It's actually user-settable: a certificate is considered valid if a "majority say yes" or "at least one say yes" or "consensus is required".
Having many notaries reduces the probability of MITM attacks, since the paths from notaries to target certificates are multiple, it's very improbable to MITM all of them at once.