Private key should not be easily accessible
A private key in the updateserver is only meant for automatic signature - which means only for nightlies process.
- There is no reason for it to be accessible through the API (writable only)
- It should not be persisted in the database.
An acceptable trade-off: keep the private key only in RAM. Main consequence: it has to be pushed again at every service restart.