Security Model

Key Security

• Never stored in plaintext: Private keys / Seed Phrase are AES-256 encrypted and only decrypted in memory when needed.

• Zero-knowledge storage: Seed phrases are user-encrypted and never sent to servers.

• Hardware Security Module (HSM) integration (future roadmap).

Transaction Security

• Client-side signing: Transactions are signed locally before submission.

• Gas estimation: Prevents stuck transactions.

Network & API Security

• TLS 1.3 for all communications.

• OAuth 2.0 / JWT for secure API access.

• IP whitelisting & DDoS protection for backend services.

• Real-time alerts for suspicious activity.