> On Feb 20, 2018, at 11:00 , [email protected] wrote:
>
> ec.derive_private_key_from_bytes(secret_bytes, ec.SECP384R1(), backend)
> could potentially be a way to do this specific operation while reducing the
> number of copies (to zero in Python and 2-3 in OpenSSL, although th
Andrew,
If you notice the call to `BN_clear_free`, it zeros the memory of the key
once it gets garbage collected.
However, as several others have explained, this does not prevent the memory
getting stored on the disk in some manner.
-tux
On Feb 22, 2018 14:41, "Andrew W. Donoho" wrote:
>
>
>
