There are more than 300BTC on a Lightning server, all belonging to Acinq. A lot of effort was put in R&D on Lightning node security.
Next on Main Stage at nostr:npub1dwah6u025f2yy9dgwlsndntlfy85vf0t2eze5rdg2mxg99k4mucqxz7c52 Lightning++ Edition: Fabrice Drouin of Acinq with "Lightning Node Security".
Discussion
Traditional security models highly rely on trust, are usually simple and limited.
Trustless models, on the other side, are complex, stateful and operational intensive.
It was not possible to move private keys from a Lightning Node to an HSM. It did not work.
"Trusted Computing" came to the rescue.