Trust anchor definition too narrow

[thomas-fossati]

Throughout the document the term "trust anchor" is meant in the RFC6024 sense to be a public key and associated (meta)data.

This definition does not cover attestation schemes based on symmetric crypto, e.g., TCG MARS, Symmetric Identity Based Device Attestation for DICE and Arm PSA, and should be extended to also cover such cases.

[nedmsmith]

Was there specific text that you believe needs to be changed?

[thomas-fossati]

Was there specific text that you believe needs to be changed?

yes, we identified at least two places: §7.1 and §12.4.