Security

Date: December 6, 2024

Overview

ParaFi Technologies maintains a comprehensive security framework designed to safeguard the confidentiality, integrity, and availability of our systems and information. We employ a layered defense strategy encompassing physical, cyber, device, custody, and on-chain security measures, drawing from recognized industry standards and applicable regulatory requirements.

All validator infrastructure is hosted in audited data centers that adhere to established security standards. Physical access is strictly controlled and continuously monitored. We implement rigorous device management controls, including mandatory encryption, endpoint detection, and remote-wipe capabilities. Multi-factor authentication is standard for all systems and applications.

Our cybersecurity controls include zero-trust network architectures, restrictive access policies, and regular vulnerability scanning. Systems are hardened with robust identity verification, network firewalls, and automated patching. Sensitive cryptographic operations occur in trusted execution environments or utilize threshold encryption schemes and quorum-based approvals to mitigate single points of failure, where applicable.

On-chain interactions leverage well-audited smart contracts and continuous transaction risk assessments. We utilize risk classification tools and adhere to established key management protocols. We routinely evaluate our controls against evolving threats and industry best practices to maintain a resilient security posture over time.