Certificates are a useful part of a security scheme but surely platform vendors need to do more to build infrastructure into OS's etc for managing them more effectively?