Certificate Authorities to remove to Harden security

Hi Everyone.

I was recently at a conference. One of the subjects was around Certificate Authorities (ROOT and LEAF) that some are less trustworthy then others and should be removed from a computer. The goal to help stop users from accidently accessing bad sites. But also so that if you are using whitelisting/blacklisting to help limit the risk from bad code signs.



It is not fool proof I know, I was wondering if anyone here has a list of “BAD …

bad certificate certificate authorities computer conference cybersecurity leaf remove root security whitelisting