Security Infrastructure

Enterprise-GradeSecurity.

Built to protect billions in digital assets with four independent security layers, world-class certifications, and comprehensive insurance coverage.

Defense in Depth

Four Layers of Protection

Every layer operates independently so that no single compromise can reach your assets.

PhysicalTier IV · biometricNetworkWAF · DDoS · TLS 1.3CryptographicMPC-CMP · HSMOperationalSOC · <15 min SLACLIENT VAULT

Each ring is enforced by an independent team and tooling — no single operator spans all four.

Physical Security

  • Tier IV data centers with 99.995% uptime
  • Biometric multi-factor access control
  • 24/7 armed surveillance & CCTV monitoring
  • Faraday cage protection for cold storage

Network Security

  • Enterprise DDoS protection & mitigation
  • Web Application Firewall (WAF)
  • Annual penetration testing by Big Four firms
  • End-to-end encrypted communications (TLS 1.3)

Cryptographic Security

  • MPC-CMP key management
  • Distributed key shards across UAE, Switzerland & Singapore
  • HSM-backed transaction signing
  • Zero single point of failure in key lifecycle

Operational Security

  • 24/7 Security Operations Center (SOC) monitoring
  • Dedicated incident response team with <15 min SLA
  • Comprehensive employee background checks
  • Strict separation of duties & least-privilege access
Key Geography

Distributed Across Three Jurisdictions

Private key shards live in geographically separated HSMs — no single region can sign a transaction alone.

Zurich · CHDubai · UAESingapore · SGMPC-CMP key shard (3 of 5 shown)
Incident Response

Under 15 Minutes, 24/7

< 15 minSOC RESPONSE SLA060

A dedicated SOC team operates our platform 24/7/365. For any security-relevant alert — suspicious signing attempt, abnormal withdrawal pattern, infrastructure drift — first human response time averages under 15 minutes, with an escalation chain that reaches compliance and legal within the hour.

24/7SOC coverage
0incidents since inception
Certifications

Independently Audited

Our security posture is validated annually by leading independent auditors.

SOC 2 Type II

SOC 2 Type II

Security, availability & confidentiality

ISO 27001

ISO 27001

Information security management

ISO 27017

ISO 27017

Cloud security controls

ISO 9001

ISO 9001

Quality management systems

Insurance Coverage

$250M Lloyd's of London

Comprehensive insurance policy underwritten by five Lloyd's of London syndicates, covering theft, private key compromise, internal collusion, and cyber intrusion. Coverage extends to both cold and warm storage environments with no sub-limits on individual asset classes. Policy reference: SY-2025-49881.

$250M
Aggregate Limit
$100M
Per-Claim Limit
5
Lloyd's Syndicates

Want the Full Picture?

Download our comprehensive security whitepaper detailing every layer of our infrastructure.

Download Security Whitepaper