Folks, somehow this thread diverged from HTTP/1.1 PGP based TLS mechanisms into a fun-with-hardware-trust thread.
Please take this discussion to an appropriate security-wonk debating club forum, such as vuln-dev or bugtraq, as it's all entirely off topic on this forum. Yours, Bill