java/remoteprovisioning/CryptoUtil.java (1 line):
	- line 716: // TODO: No implementations will have anything more than a device public key and a self


java/remoteprovisioning/ProtectedDataPayload.java (1 line):
	- line 322: // TODO: In future phases, the key signing the MAC is not going to be the device public key,