Implement a secret store for clients that has a isolated keyspace for each profile and requires a one-time unlock on every boot of the client. Keep the master key in memory only.
Something like...
val ss = profile.getSecretStore; ss.unlock("mypw"); ss("key") == //secret
Implement a secret store for clients that has a isolated keyspace for each profile and requires a one-time unlock on every boot of the client. Keep the master key in memory only.
Something like...
val ss = profile.getSecretStore; ss.unlock("mypw"); ss("key") == //secret