@upshotknothole @edavies @micahflee I certainly was going to address that. Keep in mind you have to rely on COMODO's certificates and not be fooled by the TLS certificate being replaced in some form of MiTM. But it is a rare issue, just one to be aware of when needed.
Otherwise, I absolutely agree, but keep in mind marketing has a huge role here. I mean, they claim to do "a reasonably secure OS". It better be reasonably secure... for the target audience.