I'm trying to understand the Remote Attestation Protocol based on Privacy CA and at this moment I have several questions:
Who does initiate the attestation, Verifier or Attester?
AIK (Attestation Identity Key) is an alias for EK (Endorsement Key), but what does it actually mean? I understood that AIK is must be created when the Verifier wants to attest the state of the remote machine (where Attester is running on). As EK is a TPM-protected key and never leaves it, we need AIK, but how does it actually created and linked to EK?
When the Attester sent to the Verifier its AIK (or EK cert?), the second sends it to the Privacy CA and the last checks it for validity, so here does it need its own TPM (the Privacy CA) to calculate some signatures (or create certificates)?
When it comes to verifying PCR values how is it verified by the Verifier, does it need the so-called gold measurement values to do verification or only PCR values needed?
And the last how will the Attester be notified that the verification is succeeded?
Thank you
