AWS Shield and Elastic Load Balancing defend against DDoS attacks. Custom middleware protects against attacks that target currency specifics.
Designed for high availability and the ability to scale quickly, as these are the servers that
power the network. We dynamically allocate server resources across multiple cloud providers
(AWS, Digital Ocean, and Google Cloud). This means that if all of AWS and Google Cloud go down,
our entire infrastructure moves dynamically to Digital Ocean in <10 minutes.
Orchestrated by Kubernetes, this allows
Signing servers are completely inaccessible except to the listening cloud via encrypted key access.
Bare metal servers responsible for producing and signing blocks. The signing servers are secured in multiple geographically dispersed military grade data centers in the United States, have hardware signing modules for key security, and are fire-walled so they can only communicate with the listening servers.
Yubico YubiHSM 2 hardware modules are used for key management. Key protection is done in the secure on-chip hardware that is isolated from operations on the server. Staked cryptocurrency remains completely safe even in the event of compromised servers.