Explore the impact of certificates on service-based infrastructure in this 43-minute conference talk from BSides San Francisco 2015. Delve into the world of certificates, certificate authorities, and trust chains, understanding their crucial role in web security. Learn about implicit trust, the concept of "The Man in the Middle," and the potential risks associated with strict certificate checking. Examine real-world scenarios, including corporate outages and the pros and cons of internal certificate authorities. Gain insights into identifying risk areas, utilizing essential tools, and conducting effective code reviews to enhance your organization's security posture.