Provide a secure key store layer to the public key store

It needs to be possible for plugin author to securely encrypt data into the key store so that other plugins can't intentionally or unintentionally read/write to the store.

Could use standard cert/keys etc.