Key Management and storage
The private key for an end user key-pair is stored within either the secure enclave of an iOS / Android mobile device or a FIDO2-compliant USB key.
On a server, the Host agent private keys are stored locally in the file system with as strict permissions as possible.
The BlastShield™ orchestration node(s) maintains a database of the public keys for all authorized nodes on the network.