Thank you for your detailed answer... Based on my understanding, the closed-source nature of the SE used on Keycard should always remain the same and the checkmarks on the SE parts of the Shell would probably mislead ^{[unintentionally]} some users.
^{- I believe the highlighted part on this "screenshot" should also be changed (because of the hardware part).}