Clearly document our assumptions

[thomas-fossati]

Add documentation stating assumptions about:

• integrity of sub-attester modules
• identity of the lead attester (e.g., subject in the cert, cert issuance logics, etc.)