There is no authority that signs the HTTP and IMAP certificates of Damocles.
The user should be able to check the authenticity of the certificate by other means: