One more response from the badly overcrowded technical perspective… I am good at what I do precisely because I know how NOT to think like the rest of the pocket protector set. (I also know how NOT to write an essay for the non-technical business community.)
I purposefully extracted myself from overcrowded technical perspective and asked myself why businesses would chose LE over the traditional CAs… And the reasons all boil down to “free” and “automated.”
I am not writing about the inner workings of the PKI. I am writing about the dangers of “fire and forget” complacency…
Here is a little dose of reality: https://resources.infosecinstitute.com/cybercrime-exploits-digital-certificates/
In practically all of the instances written about in the above-linked article you had some form of human error… Again, the PKI is only as good as its implementation by human beings. And encryption is only as trustworthy as the KMS from which the certificates arise.