Securing the private key

Obviously the linchpin in the system is the proper handling of the private key. If access to it is compromised the system fails.
For applications like PGP consider storing it off-line, for example, on a USB memory stick or smart-card.
Consider storing it encrypted when it has to be on a machine, for example passphrase protected for SSH or SSL keys.

Obviously the linchpin in the system is the proper handling of the private key. If access to it is compromised the system fails.