Security

Security is foundational to everything we build. Multiple layers of protection ensure your assets and data are safe at all times.

Cold Storage

95% of all crypto assets are stored in air-gapped, hardware security module (HSM)-backed cold wallets. Only operational liquidity is kept in hot wallets.

Multi-Signature

All withdrawals from cold storage require multiple authorised signatories using geographically distributed signing devices. No single person can move funds.

DDoS Mitigation

Cloudflare enterprise-grade protection with sub-second attack detection, rate limiting, and automatic traffic filtering across our global edge network.

Encryption

All data encrypted at rest (AES-256) and in transit (TLS 1.3). API keys, secrets, and sensitive user data use additional application-level encryption.

Two-Factor Authentication

TOTP (Google Authenticator) and FIDO2/WebAuthn hardware keys supported. 2FA is required for withdrawals and critical account changes.

Regular Audits

Quarterly penetration testing by independent security firms. Annual SOC 2 Type II audit. Continuous automated vulnerability scanning across all systems.

Security Practices

  • HMAC-SHA256 request signing for all API access
  • IP whitelisting for withdrawal API keys
  • Session management with hardware-bound JWT tokens
  • Real-time anomaly detection on login and withdrawal patterns
  • Automatic account freeze on suspicious activity
  • Anti-phishing code displayed in all official emails
  • Rate limiting and brute-force protection on all endpoints
  • Proof of Reserves published quarterly

Bug Bounty Program

We reward security researchers who responsibly disclose vulnerabilities. Bounties range from $100 to $10,000 depending on severity.

Report a Vulnerability → security@rizenx.com
en