Summary

This is an optimization to avoid RA by checking enclave key sigs instead. The guarantees remain the same since the enclave key is proven to be generated within an enclave during handshake (depends on app, but should really be the default case).

Acceptance Criteria

• Add a Signed<> message type and handler (similar to the Attested type/handler)