One additional point re: motivation -- for a public service, you'd also want the SSL certs be issued by a ext. CA. Issuing certs for IP addresses is cumbersome and hard to maintain; ususally we try to stick to our wildcard *.c.c cert for economy
One additional point re: motivation -- for a public service, you'd also want the SSL certs be issued by a ext. CA. Issuing certs for IP addresses is cumbersome and hard to maintain; ususally we try to stick to our wildcard *.c.c cert for economy