The SSL Labs SSLTest interface does not have any of the DoD Root Certs and flags everything as untrusted.
We will release this addition in few weeks.
Don, in the current version we're using Mozilla's trust store, which does not contain any DoD root certificates. In the next version we will support multiple stores, making it possible to report if the certificate would be trusted by Mozilla, IE, DoD, etc.
ivanr, 4+ years later, where does this stand? In addition to DoD certificates, I'm interested in ECA certificates.
Retrieving data ...