small tweak re: identity endorsements

say that "attestation keys" do not exist in void: they are linked to claims that identify the AE.
ietf-rats-wg · Feb 24, 2024 · 376bc8d · 376bc8d
1 parent cbed9a8
commit 376bc8d
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/draft-ietf-rats-endorsements.md b/draft-ietf-rats-endorsements.md
@@ -39,6 +39,7 @@ author:
   email: [email protected]
 
 informative:
+  I-D.ietf-rats-eat: rats-eat
   TCG-DICE:
     author:
       org: "Trusted Computing Group"
@@ -203,7 +204,7 @@ multiple parsers for matching policies.
 # Endorsing Identity
 
 One type of claims that might be endorsed would be claims having to do with
-identity, such as verification keys.  While identity claims are just another
+identity, such as verification keys bound to an identifier for the Attesting Environment (e.g., {{-rats-eat}} `ueid`).  While identity claims are just another
 type of claims that may be endorsed, some implementations might treat them
 differently. For example, a Verifier might perform a first step to
 cryptographically verify the Attester's identity before spending effort on