[Security] Storing Data at rest encryption Keys in the Secure Enclave
Keeping a private key in a keychain is a great way to secure it. The key data is encrypted on disk and accessible only to your app or the apps you authorize. However, to use the key, you must briefly copy a plain-text version of it into system memory. There is a chance that if the application is compromised, the key could also become compromised. As an added layer of protection, you can store a private key in the Secure Enclave.