There is some concern that the Atom interface is not authenticated. I suggest that we provide an optional capability to create a client side certificate for devices (usually gateway type) that are anonymous. This would allow the DE to verify the authenticity of the Atoms with the Consumer having to 'login'. These certivicates might be signed (as CA) by the IDA.