Wave Systems Corp. (fka WAVXQ)

[svenm]

Doma,
You write: "Unless Verisign has developed & put in place an
Attestation server at Infineon's TPM manufacturing
plant,it's Wave's.....that is Wave is the Trusted
Third Party recording the public endorsement keys
of the TPM's". Could you please reference where you read about the attestation server at Infineon's TPM manufacturing plant? I must have missed that one.
My understanding: 1)was that the platform would be shipped with the endorsement keys in place; 2)Upon taking possession the new owner would initiate the process of creating an identity. This would involve sending the endorsement certificate to the Privacy CA, the trusted third party that would then create (after having been satisfied by numerous certificates involving that platform) the identity and manage it in the future.
I only belabor this point because I would expect the customer to have some choice in who the Privacy CA was. If the manufacturer is recording the public endorsement keys with Wave, I'm not sure it gives the customer much choice as to who their Privacy CA is. This may be a moot point when noone else has the technology to be the Privacy CA, but in the future I would not expect that to be the case.
Svenm