Yes... and thanks for pointing this out.
NEVER use a password twice (i.e. for two services)
It appears highly likely that we will shift domain in the near future and yes, the new "final" one will get a certificate. Reason for this iare the trademark regulations concerning the name "truecrypt" and similar "xyc---crypt" sounding names.
Please wait with us until the legal specialists come up with a solution.