@Kieran ... we have an odd assumption we can make, which is that the participant will have a pub/priv keypair due to having an ssb powered piece of software on their computer. There is no need then for something to sit unencrypted at that point as it can be encrypted to self. This of course does nothing to someone with physical access to the computer...