# Private key material

```
- Consistently consider private key material as a separate thing from Certificates? (like in pkcs#11?)
- consider KOpenPGP attack
- For TSKs: Best practices S2K + S2K migration?
```