WebPKI Observatory — Trust Surface
Trust stores show increasing divergence in their inclusion policies, creating a fragmented trust surface across browser vendors. Chrome now trusts 242 root certificates as of early 2026, up from 117 in February 2022, representing a 106% expansion in just four years. This growth in trusted roots directly contradicts the market concentration visible in issuance volume, where five CAs dominate but nearly 100 retain the full privileges of root store inclusion.