Technology

Denial of Service Protection

AWS Shield and Elastic Load Balancing defend against DDoS attacks. Custom middleware protects against attacks that target currency specifics.

Ethereum
Cosmos Network
EOS
Kubernetes
NuCypher
Augur
Tezos
Kubernetes
Amazon Web Services
Google Cloud Platform
Digital Ocean

Listening Cloud Tier

Designed for high availability and the ability to scale quickly, as these are the servers that power the network. We dynamically allocate server resources across multiple cloud providers (AWS, Digital Ocean, and Google Cloud). This means that if all of AWS and Google Cloud go down, our entire infrastructure moves dynamically to Digital Ocean in <10 minutes. Orchestrated by Kubernetes, this allows near-infinite scale, self-healing and a decentralized hardware infrastructure.

Firewall

Signing servers are completely inaccessible except to the listening cloud via encrypted key access.

Ethereum
Cosmos Network
EOS
Kubernetes
NuCypher
Augur
Tezos
Location 01
Hardware Keys
Ethereum
Cosmos Network
EOS
Kubernetes
NuCypher
Augur
Tezos
Location 02
Hardware Keys

Signing Servers

Bare metal servers responsible for producing and signing blocks. The signing servers are secured in multiple geographically dispersed military grade data centers in the United States, have hardware signing modules for key security, and are fire-walled so they can only communicate with the listening servers.

Signing Servers

Processor: 8 cores scaling up to 96 x 2.5 GHz Intel Xeon Platinum 8175 processors using Advanced Vector Extension (AXV-512) instruction set
Memory: 64 GiB scaling up to 384 GiB
Storage: 256 GiB scaling up to 16 TB on solid state drives with 160 MB/s throughput
Dedicated Bandwidth: 2 Gb/s scaling up to 25 Gb/s

Key Management

Yubico YubiHSM 2 hardware modules are used for key management. Key protection is done in the secure on-chip hardware that is isolated from operations on the server. Staked cryptocurrency remains completely safe even in the event of compromised servers.