77
Chromium Blog: Towards HTTPS by default
(blog.chromium.org)
This is a most excellent place for technology news and articles.
No, they were working on a solution a while ago, where a website would list what CA it used so you couldn’t get a random CA to issue a cert, but that effort was abandoned iirc.