With TLS communication being the norm nowadays it should be easier to enable clients to use TLS (fna SSL).

So no more use of utilities like certutil (or similar) to import certificates (chains) into the OE registry. Make this transparent the way browsers handle this. 

When I say client I mean clients in the broad sense, GUI, CHUI, AppServer, Webclient etc...