This document discusses nation-state attacks on public key infrastructure (PKI). It provides examples of state-sponsored cyber attacks including Stuxnet and a 2011 incident where Iranian actors misissued digital certificates from Comodo. The document analyzes the differences between state and non-state cyber attacks in terms of motives, capabilities, and targets. It also summarizes lessons learned, including the importance of security basics, notifying responders of incidents, and planning for public disclosure.