Secure Enclave Support for Certificates
We currently evaluate the security concept of mac certificates for our company. Unfortunately I only can see, NoMad is just "marking" certificates as non-exportable. This is not really secure as the operating system still has access to it. There are good code example on "how to create keypairs in secure enclave processor (SEP)" in order to ensure that those certificates are really safe and no one ever would be possible to export them.