Naming of trusted entities and identities
@kai , yesterday you suggested we loosen the coupling between what I call Machine Identity (MI) and the key pair used to sign the TPM Quotes. You also suggested renaming Data Channel Identity (DCI) to something that follows convention - this being a parameter more than an identity. The diagram is public here.
Could you:
- Suggest better names and ways to think about them.
- Suggest which key pair should be signed by the Platform Operator (PO) and how this key pair should be related to the key pair that signs the TPM Quote.
Thank you!