CONFIDENTIAL COMPUTING
Security TEE
Our aggregator runs inside an AMD SEV-SNP enclave. No one — not even us — can access your individual trades.
What is a TEE?
A Trusted Execution Environment is a hardware-level secure environment that cryptographically isolates code and data — including from the OS and hypervisor. Even the cloud provider or our administrators cannot access processed data.
Standard server
AMD SEV-SNP Enclave
Data flow
What goes in, what comes out.
Your individual trades stay confined in the enclave. Only aggregated metrics come out, cryptographically signed.
Never leaves
API keys + trading data
AES-256-GCM / TLS
TEE Enclave
Signed metrics
verifiable report
Protection architecture.
4 stacked security layers, from hardware foundation to application. Each layer verifiable via VCEK attestation.
AMD SEV-SNP
Hardware isolation, keys in silicon
TLS Termination
Inside enclave, cert bound to attestation
E2E Encryption
ECDH P-256 + AES-256-GCM
Volatile RAM
Never on disk, wiped on reboot
Anti-Cherry-Picking
Verified unique account.
AuditZK enforces a permanent binding between broker accounts and user profiles for compatible exchanges — eliminating any possibility of resetting performance history after losses.
Compatible exchangesPermanent binding
One account = one profile, permanently
No reset
Cannot restart after losses
Verified UID
Unique identifier provided by broker
100% auditable code.
All code running in the enclave is public. Verify no exfiltration is possible. Confirm deployed code matches the attested hash.
~5,700
TypeScript lines
40
source files
100%
Open source
MIT
License
Verify it yourself.
Retrieve AMD SEV-SNP attestation from your terminal. Verify the VCEK signature.