Keeping private key for signing transactions on a local server
Need an idea for not storing private key to sign transactions (on public server/database file system).
The private key is needed to sign the transactions for
To accomplish, my initial thoughts are (for bip39 and bip44 wallets):
Generate all the address with master key.
store only public keys for different users.
Record the list of transactions to be done for the day and store details on database (list of addresses and amount transferred).
On a local server (say a 4gb RAM laptop with private master key) get the transaction details and execute transaction.
keep the geth RPC options off.
Is this approach in any ways more secure than storing private key on server?