Key Security: Zeroing Buffers Is Insufficient (AES-NI leaves keys in SSE registers)
The article "Zeroing Buffers Is Insufficient" describes how AES-NI can leave keys in SSE registers for long periods of time. (It also describes issues with temporary variables on the stack, and in other registers.)
http://www.daemonology.net/blog/2014-09-06-zeroing-buffers-is-insufficient.html
Is there a way we can semi-portably fix this?