Astral's asset security measures are as follows:
1. Cold/Hot Wallet Separation Storage Solution:
Astral employs a cold/hot wallet separation storage solution. The majority of assets are stored in the cold wallet, while the hot wallet retains a small amount of funds for daily transactions.
2. Immediate Transfer upon Exceeding the Limit:
When a user's assets exceed the set limit, Astral immediately transfers the excess funds to the cold wallet to ensure the security of the user's assets.
3. Multi-Administrator Authorization:
Astral utilizes a multi-administrator authorization mechanism, requiring multiple authorizations to complete important operations such as withdrawals. This mechanism enhances security by ensuring that only authorized administrators can perform sensitive operations.
4. User Large Withdrawals:
For user requests involving large withdrawals, Astral undergoes rigorous risk management authentication. Only authorized requests are broadcasted to the blockchain for confirmation, ensuring the safety of user funds.
5. User Deposits:
User deposit operations undergo multiple risk management authentications to ensure the legitimacy and security of fund sources. Only authorized deposit requests are confirmed and deposited into users' accounts.
6. Hot Wallet for Deposits:
Astral's hot wallet for deposits incorporates multiple technologies such as multi-signature, MPC/threshold signature, and big data risk control to ensure the security of private keys. All deposits require multiple risk management authentications before being broadcasted to the blockchain for confirmation.
7. Cold Wallet:
Astral's cold wallet follows the principles of offsite backup, bank custody, multiple storage media, multi-signature, and complete offline storage to ensure absolute asset security. Through long-term practice, Astral has established comprehensive processes, systematic solutions, and emergency handling mechanisms, maintaining a zero-incident record.
8. Multi-Signature Wallet:
Astral's wallet adopts an institutional-grade, multi-signature, multi-currency approach. Transfers can only be completed after strict m-of-n authorizations are obtained, ensuring asset security in offline environments. The multi-signature scheme effectively avoids asset loss due to the compromise of a single private key.
9. Withdrawal Protection:
During withdrawal operations, Astral requires at least two or more forms of multi-factor authentication. Only after complete identity verification can withdrawals be conducted. After security settings such as password resets, users need to wait for 24 hours before being able to withdraw funds. Additionally, verification of user intent through SMS or email is performed to prevent hackers from extracting funds by modifying security settings.
In summary, Astral has implemented multiple security measures, including cold/hot wallet separation, multi-administrator authorization, and multiple risk management authentications, to ensure the safety of user assets and transaction security.