4.7 - `normal' Private PKI CA's

There is a broad class of product places in the market for 'normal' PKI in private settings; e.g. for enterprises / in B2B, that are missing - yet were manufactures would benefit from a simple to follow vertical standard/presumption of conformity. I.e. outside NIS2 (but potentially still under, say, DORA)