Memory protection and encryption.
Sequoia makes an effort to protect secrets stored in memory. Even though a process’s memory should be protected from being read by an adversary, there may be bugs in the program or the architecture the program is running on that allow (partial) recovery of data. Or, the process may be serialized to persistent storage, and its memory may be inspected while it is not running.
Furthermore, operations involving secrets must be carried out in a
way that avoids leaking information. For example, comparison
must be done in constant time with