This is a bit clumsy, because you have to check those addresses on the display, BUT this will go away when payment protocol BIP is accepted and implemented in Trezor.
from what I understood, the payment protocol doesn't solve two major problems associated with PKIs : that people are not reading who issued the certificate, and that """certification authorities""" fail to perform due diligence before issuing certificates.