OmniSafe recognizes that different operational needs require different levels of accessibility. To address this, we employ a tiered storage approach, utilizing both cold and hot wallets.

  • Cold Wallets (Offline Storage): A significant portion of assets is stored in cold wallets, entirely offline and isolated from network connectivity.
    • Implementation Details: Private keys for these wallets are generated using HSMs or secure air-gapped computers. Storage media include encrypted USB drives, hardware wallets, or paper wallets stored in secure physical vaults.
    • Access Controls: Access to these wallets requires strict multi-party authentication and manual procedures, ensuring that only authorized personnel can access them.
  • Hot Wallets (Online Storage): A smaller portion of assets is stored in hot wallets, which are connected to the network and allow for faster transaction processing. These are multi-signature wallets and are always protected by advanced encryption to ensure that assets are secured.
    • Implementation Details: Private keys for hot wallets are generated within HSMs and secured with multi-factor authentication. The wallet structure supports multiple signers, enabling secure authorization of transactions.
    • Monitoring: Hot wallets are continuously monitored for suspicious activity, with automated alerts triggered if any anomalies are detected.

Purpose:

  • Optimal Security: Ensures that the majority of assets are protected from online threats.
  • Operational Efficiency: Allows for quick access to a smaller portion of assets for routine transactions and operational needs.
  • Granular Control: Provides a flexible approach that balances security and accessibility.
Key ManagementMulti-Signature Wallets