Scott Leggett

Cached passphrases and PCSC transactions are dropped after a timeout period by exiting the process, which the simplest and strongest guarantee of clearing sensitive data from memory.

> Automatically killing the agent after some time makes sense as a protection in certain use cases, but what I'd need would be to start up the agent on a...

It is a [root certificate](https://en.wikipedia.org/wiki/Root_certificate) pre-installed on your system.

I'm seeing errors like this in master node logs: ``` [2024-06-05T01:05:39,152][INFO ][o.o.s.a.s.DebugSink ] [opensearch-cluster-master-2] AUDIT_LOG: { "audit_node_id" : "lP5ZYpVDR1O9n8EDWhKe1g", "audit_request_layer" : "TRANSPORT", "audit_request_exception_stacktrace" : "javax.net.ssl.SSLHandshakeException: Insufficient buffer remaining for AEAD...

this is a duplicate of #878