Open
Description
The current implementation of the FAPI layer (and the interface it exposes) is quite promising in terms of ease of use, compared with the ESAPI layer. On example would be the complete lack of authentication sessions, which are, presumably, taken care of by TSS.
We should investigate this a bit and, if it is as beneficial as it looks, try and upgrade our use of the TPM. Saying this mostly so that we're consistent with our view of the world where the system should default to safe settings when you don't need specific ones, and this very much applies to our use case here.