Combined with #7, this would allow for keys with limited validity to be imported into the device without disclosing the key material to the user.
The prerequisite shall be a device-specific "transport key" installed by the issuer of the main key on the device (e.g. IT department)
