An admirable effort.
One thing to note though: (computer) security is not a product you simply install after which you can consider yourself to be safe. Of course this is saying nothing negative about this effort,none at all: I applaud the initiative. Because it brings things back to basics: too many CA's are basically abusing their positions by overcharging their customers for something completely trivial.
But the reason I post this is because too many people seem to believe the doctrine that "HTTPS = safer than HTTP". Which is utter bullshit. It all depends on usage and context. Sure, when going to a website which asks you to log in then HTTPS is definitely preferred. But what about a website which allows you to fill out your (or 'a') name with a small comment (like a guestbook)? HTTPS wouldn't provide any significant increase of security there, yet such websites will be immediately dubbed "insecure" by plenty of browsers.
The same browsers which would dub a website such as "ihashax.u" (I made this up) perfectly safe as long as they use HTTPS while requesting: "pls request ur hax here! <entry form>" <small letters> "we h4x everything, including u, filling out this form means u constitutor to us h4xing u!" </small letters>
Whats my point? Security isn't a thing you can install or turn on or off. Yet all this HTTPS pushing does is that there will be plenty of people who'd consider any kind of website safe as long as it's using HTTPS. That's not how security works! "That exe file can't have been ransomware, I downloaed it from this secure website and even my browser said it was secure!".
Security starts by not blindly trusting on automated tools, and using that grey blub between your ears to think things through instead. Too much reliance on security tools such as HTTPS can create a massive risk in itself.