Security

The design of our architecture maximizes trust and security. Furthermore, we implemented the following measures to attain the safest swap experience for our users.

Multisignature

Multisignature, or multisig, is a digital signature scheme that requires multiple parties to authorize a transaction or access to funds. In the context of our crypto project, it means that multiple private keys must be used to validate and execute transactions within our smart contracts. By leveraging multisig, we eliminate the reliance on a single private key, which can be vulnerable to unauthorized access or compromise.

Benefits of Multisignature

Implementing multisignature within our smart contracts brings several key advantages, including:

Enhanced Security

Multisig serves as a significant security measure by reducing the risk of unauthorized transactions or malicious activities. Since multiple private keys are required to authorize any transaction, attackers would need to compromise multiple keys simultaneously, significantly raising the bar for potential security breaches.

Shared Control

Multisig allows for shared control and decision-making among authorized parties. For instance, in the case of a multi-member organization or a joint account, consensus among the authorized participants is necessary to execute a transaction. This shared control not only distributes responsibility but also minimizes the possibility of a single point of failure.

Protection Against Insider Threats

Multisig acts as a safeguard against insider threats. Even if one of the authorized parties turns malicious, collusion with other participants would be required to perform unauthorized actions. This added layer of security reduces the potential damage caused by internal bad actors.

Securing Smart Contracts

By integrating multisig across all our smart contracts, we ensure the highest level of protection for the assets and functionalities governed by these contracts. Unauthorized modifications or fraudulent actions become significantly more challenging, as they require the approval of multiple authorized parties.

No KYC

We are committed to adhering to all applicable legal and regulatory requirements while ensuring that our no KYC policy aligns with the principles of DeFi. While KYC may be necessary in certain traditional financial systems, we firmly believe in providing a secure, privacy-focused DeFi experience that empowers individuals to have full control over their financial activities.

Benefits of No KYC policy

Preserving User Privacy

By not requiring KYC, we prioritize the privacy and autonomy of our users. User identities and personal information are not collected or stored, ensuring a higher level of privacy. Users can freely engage with YAD platform without disclosing sensitive personal data, preserving their financial sovereignty.

Reducing Targeted Attacks

Our no KYC policy minimizes the risk of targeted attacks against individuals or centralized databases that typically hold KYC information. Without a centralized repository of user data, the risk of data breaches and the exposure of personal information is significantly reduced.

Enhancing Security Through Decentralization

With our no KYC policy, we embrace the decentralized nature of blockchain technology. User information remains distributed across the blockchain network, eliminating a central point of failure that could compromise the security and privacy of our users. This distributed approach enhances the overall security of our DeFi ecosystem.

Mitigating Identity Theft

By eliminating the requirement for KYC, we mitigate the risk of identity theft. Users can transact and engage with decentralized financial services without exposing personally identifiable information that could potentially be exploited by malicious actors.

Non-custodial architecture

YAD is a non-custodial DApp, designed to prioritize user control and security within the decentralized ecosystem. As a non-custodial platform, we ensure that users maintain full control over their assets and private keys. This approach offers several significant benefits in terms of security:

Enhanced Asset Security

By being non-custodial, we eliminate the need for users to entrust their assets to a centralized third-party entity. Users retain sole ownership and control over their funds, mitigating the risk of theft, loss, or mismanagement associated with traditional custodial services.

Reduced Counterparty Risk

Our non-custodial approach significantly reduces counterparty risk. Users are not required to rely on a single central entity to safeguard their funds. Instead, they manage their assets directly through their private keys, minimizing the potential for external vulnerabilities or breaches that could compromise their holdings.

Protection against Hacks and Breaches

Being non-custodial inherently reduces the attractiveness of our platform as a target for hackers. Since we do not hold user funds, potential attackers have no centralized point to focus their efforts on. This decentralized security model enhances the overall resilience of our platform and safeguards user assets.

Privacy and Anonymity

Our non-custodial DApp prioritizes user privacy and anonymity. Users are not required to provide personal information or undergo identity verification, allowing them to engage in transactions without compromising their privacy. This approach ensures that sensitive user data is not susceptible to breaches or misuse.

Alignment with Decentralized Principles

Our non-custodial approach aligns with the core principles of decentralization, promoting self-sovereignty and eliminating the need for intermediaries. By empowering users with control over their assets, we foster a more trustless and transparent ecosystem, reducing the dependency on centralized entities.

Last updated

#88:

Change request updated