There have some kernel mechanisms that they keep symmetric key or password in memory. Those password or key may leak through /dev/mem, kdump, hibernation, bpf print to userland.
I want to think a design to:
Collect those sensitive data in a place
To avoid sensitive data are leaked through interface to userland.
Low overhead when getting data and checking sensitive memory area.
This project is one of its kind!