HTTPS

An authority is known only at this single condition:

the authority's public key must be entered in the browser.

Do not accept keys signed by a known authority,

if the key isn't intended to the visited site.

Do not accept keys signed by an unknown authority,

even if the key is intended to the visited site.

even if the authority's name corresponds to a known authority.