Security
Cloud Security

Cloud Security

Ensuring the security of our cloud infrastructure is paramount to the overall security posture of Kaiju Wallet. We implement a range of best practices to safeguard our cloud environment, focusing on data protection, high availability, and access control.

Encryption at Rest and in Transit

  • Encryption at Rest: All data stored within Kaiju Wallet's cloud infrastructure is encrypted at rest. This includes data stored in databases, object storage, and backups. We use industry-standard encryption algorithms to ensure data remains secure and unreadable by unauthorized parties.
  • Encryption in Transit: Data transmitted between Kaiju Wallet services and clients is encrypted using TLS (Transport Layer Security). This protects data from being intercepted or tampered with during transmission, protecting against attacks such as Man-In-The-Middle.

High Availability and Fault Tolerance

  • Multi-AZ Deployment: To ensure high availability and fault tolerance, Kaiju Wallet's services are deployed across multiple Availability Zones (AZs) within the cloud infrastructure. This redundancy helps us maintain service continuity in the event of an outage in any single AZ.
  • Automatic Failover: Our architecture is designed to automatically failover to backup systems in the event of a failure. This ensures that users experience minimal disruption and that data integrity is maintained.

Network Security

  • Virtual Private Clouds (VPCs): Kaiju Wallet uses VPCs to isolate different parts of our infrastructure. This segmentation helps limit the blast radius of potential security incidents and ensures that only authorized traffic can access sensitive components.
  • Security Groups: We utilize security groups to control inbound and outbound traffic to our instances. Security groups act as virtual firewalls, allowing us to enforce strict access controls and minimize exposure to potential threats.
  • Network ACLs: Network Access Control Lists (ACLs) provide an additional layer of security by controlling traffic at the subnet level. These ACLs complement security groups and provide granular control over network traffic.

Fine-Grained Access Control

  • IAM Policies: Identity and Access Management (IAM) policies are used to enforce fine-grained access control. These policies define who can access which resources and what actions they can perform, following the principle of least privilege.
  • Audit Logging: All access and administrative actions are logged and monitored. Audit logs help us detect and respond to unauthorized activities, providing a critical layer of oversight and accountability.

By adhering to these cloud security practices, Kaiju Wallet ensures that our cloud infrastructure is secure, resilient, and capable of protecting user data against a wide range of threats. Our commitment to encryption, high availability, network security, and fine-grained access control underscores our dedication to providing a secure environment for our users

Key Management and SecurityData Protection and Privacy