Add note on transitive trust to Trust Model section. Fix #252.

Author: msporny

index.html

@@ -667,6 +667,19 @@ <h1>Trust Model</h1>
 <a>relying party</a>, a more flexible and dynamic trust model is created
 such that market competition and customer choice is increased.
       </p>
+
+      <p class="note">
+Experts may recognize that the data model detailed in this specification
+does not imply a transitive trust model, such as that provided by more
+traditional Certificate Authority trust models. In the Verifiable Credentials
+Data Model, a <a>verifier</a> either directly trusts an <a>issuer</a> or it
+does not trust the issuer. While it is possible to build transitive trust
+models using the Verifiable Credentials Data Model, implementers are urged
+to
+<a href="https://tools.ietf.org/html/draft-housley-web-pki-problems">learn about the security weaknesses</a>
+introduced by broadly delegating trust in the manner adopted by
+Certificate Authority systems.
+      </p>
     </section>
 
     <section>