That's an interesting idea... instead of storing the bearer tokens associated with your internally-pointing ocaps (held by external users), salt and hash them. That way if your server is compromised the ocaps that other people hold to you internally can still be valid.
https://groups.google.com/d/msg/cap-talk/zGu5th2Lsxc/84PZ5TD2CwAJ
@aaronpk Yep, it's obvious once proposed, just somehow I had never thought of it :)