There's a (not widely publicized) feature of Linux that enables secure key storage inside the kernel: https://www.kernel.org/doc/Documentation/security/keys.txt Storing keys in the kernel has some advantages -- your key will never get inadvertently swapped to disk etc.
It's been too long since I used it to remember the details, but I believe process-private keys are one of this API's features.
It's been too long since I used it to remember the details, but I believe process-private keys are one of this API's features.