I created an incomplete summary of various reports about Certification
Authority breaches. I believe it is the most complete list to date
The summary also contains some (but not all) proposed security solutions
and enhancements for the 'CA Trust Problem' and some general security
enhancement for the deployment of SSL/TLS.
Comments and feedback are welcome.
and a video parody to explain the problem to non-technical people: