Compass currently allows users to select SSL: Unvalidated.  While the connectivity to a MongoDB service with requireSSL is required to be encrypted, the end user may choose to not validate the provided certificate.

Compass should package a release edition for security enforced environments/networks.  The SSL: Unvalidated option should be removed, possibly the SSL: None option as well.