Defense in depth across every layer of the stack.
🔑
AIP Protocol
Signed Intents (ed25519)
Every transaction is a cryptographically signed intent envelope. Ed25519 key pairs ensure non-repudiation, anti-replay nonce protection, and framework-agnostic verification. No transaction executes without a valid signature.
intent.py · AIP v0.3.0
🔒
Smart Contracts
On-Chain Escrow
Funds are locked in Solana PDA escrow (Anchor/Rust) and Base L2 Solidity contracts. No human wallet holds buyer funds. Smart contract logic controls lock, release, dispute, and 48h auto-refund.
Solana 8ADN... · Base 0xBd31...
🏢
Data Isolation
Multi-Tenant Isolation
Every tenant operates in a fully isolated data partition. Rate limits, agent caps, and volume controls are enforced per tenant. PostgreSQL Row-Level Security ensures no cross-tenant data leakage.
tenant_isolation.py
📑
Compliance
Audit Trail
Every trade, escrow, swap, and fund transfer is logged with timestamps, actors, and amounts. Policy enforcement (OFAC, transaction limits). Full CSV/JSON export for auditors and regulatory review.
audit_trail.py · CSV export
🛡
Art.1 Safety
Content Safety
AI-powered content moderation runs on every user input. Blocked categories include malware, exploitation, weapons, and regulated substances. All inputs validated and sanitized before processing.
security.py · check_content_safety()
⚡
Infrastructure
Rate Limiting & DDoS Protection
100 req/min per IP with burst allowance. Security headers (CSP, HSTS, X-Frame-Options), SSRF protection, IP spoofing prevention, 5MB body limit, 64KB WebSocket limit. Circuit breakers on all 15 chains.
check_rate_limit() · chain_resilience.py