add statement of intent and top-level requirements for multi-keyring encrypt HALT

[mattsb42-aws]

As discussed here[1], we should add similar explicit statements of intent and required behavior for the multi-keyring.

[1] #74 (comment)