(and yes, there are reasonable conversations to be had on whether DNS is decentralized “enough,” whether CAs are secure enough, etc. i don’t personally find them hugely compelling, but i’m open to them. i think this ease of implementation point still stands though.)
as an implementor, one of my favorite things about the IndieWeb protocols is that they use SSL and certificates for basic identity, integrity, and privacy, instead of their own crypto layer. crypto is a great tool, but it’s horrible for interop, debugging, and accessibility to implementors. it defaults to opaque and unreadable. you have to invest a lot of time and effort into tools to make it debuggable. browser vendors have done exactly that for SSL, which makes implementing and debugging IndieWeb protocols infinitely easier and more approachable than Salmon, ActivityPub, etc.