SINRA White Paper

6-6. Security measures for SINRA systems

Within the SINRA system, assets like valuable information and private keys used for generating blockchain transactions are meticulously managed. To ensure their secure storage, multiple layers of security measures are in place. Below are some of the foundational precautions we take.
・User-Focused Marketplace:
  Safe communication between the client (such as web browsers) and servers (like web servers) using the Secure Sockets Layer (SSL).
  Except when necessary for specific processes (like inquiries or various applications), personal information (such as user ID) is not required when purchasing NFTs on the marketplace. Transactions are feasible with just wallet connections.
・Admin Dashboard:
  Secure Sockets Layer (SSL): As mentioned above.
  When accessing the admin dashboard, you can select from multiple restrictions and    authentication methods, including:
  Two-Factor Authentication (2FA)
  Source IP Address Restriction
Wallet connection authentication during access or editing of specific data.
・Backend API:
  Secure Sockets Layer (SSL): As previously mentioned.
  Requirement for access via a bastion server in a secure zone (network).
  Public key (Secure Shell: SSH) authentication and encryption.
  Source IP Address Restriction.
  JWT (JSON Web Token) authentication.
  Data encryption to prevent data exfiltration and tampering.
  Data protection between the application and database using SSL/TLS.
  Source IP Address Restriction.
  Data protection through regular backups.
・Private Key:
  Management of the private key, used to sign blockchain transactions, with Key Management Service (KMS).
  Only multiple administrators authenticated via wallet connection can access the KMS.