Multi-Layered Defense-in-Depth Security Framework
Multi-layered defense-in-depth security framework
The security of user assets and data is our paramount responsibility. We have implemented a multi-layered, defense-in-depth security strategy that combines cutting-edge technology with rigorous operational protocols.
98%+ assets in offline storage
AES-256 military-grade security
Advanced authentication layers
24/7 threat detection system
We treat platform security not as a feature, but as a prerequisite for existence.
A visionary ecosystem is only as strong as its foundation. At NAQSN, we have engineered our platform with an unwavering commitment to performance, scalability, and, above all, security. Our technology stack is designed not just to meet today's standards but to anticipate the demands of tomorrow's financial landscape.
Institutional-grade protection for user funds with multiple layers of security
The vast majority (98%+) of user assets are held in institutional-grade, multi-signature, air-gapped cold storage facilities. These wallets are geographically distributed and require coordinated action from multiple high-level executives to access, making them impervious to online attacks. A small, carefully monitored portion of assets is held in hot wallets to facilitate swift withdrawals.
For our operational wallets, we employ advanced MPC technology. MPC allows multiple parties to jointly compute a function (like signing a transaction) over their inputs without ever revealing those inputs to each other. This eliminates the single point of failure associated with private key storage, providing superior security to standard multi-sig.
We have established a Secure Asset Fund for Users (SAFU) to protect users in the event of extreme and unforeseen circumstances. A percentage of all trading fees are allocated to this fund, which is held in a separate, publicly auditable cold wallet.
Advanced cybersecurity measures protecting platform integrity and user data
Our systems are monitored 24/7 by a dedicated security operations center (SOC) that leverages AI-powered threat detection systems to identify and neutralize malicious activity, DDoS attacks, and unauthorized access attempts in real time.
All user data, both in transit and at rest, is encrypted using military-grade AES-256 encryption. Communication with our platform is secured via TLS 1.3, ensuring maximum protection for all data exchanges.
Our codebase, smart contracts (for DeFi Hub integration), and penetration testing are conducted regularly by leading, independent cybersecurity firms. Audit reports are made available to the public to ensure full transparency.
Comprehensive account protection and user access controls
We require all users to enable 2FA using authenticators like Google Authenticator or YubiKey for enhanced account security and protection against unauthorized access.
Features such as withdrawal whitelisting, anti-phishing codes, and biometric login provide users with granular control over their account's security settings and access permissions.
Our system analyzes user behavior to detect anomalies, such as logins from unusual locations or suspicious withdrawal patterns, and can temporarily freeze accounts to prevent unauthorized fund movement.
User assets in air-gapped cold storage
Continuous security operations center
Military-grade encryption standard
Mandatory two-factor authentication