In some cases, including cases in the Phacility cluster, we can meaningfully reduce the cost of private key disclosure by restricting keys and tokens to work only from specific source subnets.
For example, the signing key for intra-cluster requests as a cluster agent can be locked to the cluster subnet. An attacker would then need to both learn the private key and gain access to a host (which is generally a strictly higher barrier, as hosts necessarily have access to the key).
This isn't especially important, as it only serves to harden the cluster, but is probably also not very difficult.
This would look something like an option to restrict an SSH key to specific subnets (like 172.30.0.0/24) and then checks in Conduit request authentication and the SSH daemons that the request originates from an allowed IP in the range.
This can apply to Conduit tokens in the general case after T5955.