I think just from a security perspective it makes most sense for the device or os manufacturer to handle attestation for that device.
I think just from a security perspective it makes most sense for the device or os manufacturer to handle attestation for that device.