# Security - MoonMints Discord #### **Security at MoonMints** 🔒 Security is our top priority, and we implement industry-leading measures to ensure **user wallets and funds remain fully protected**. Here’s how we achieve this: #### **🔹 Private Key Encryption & Storage** * User wallets are **fully encrypted** using **AWS Secrets Manager with AES-256 encryption**. * **Private keys are never stored in plaintext** at any point. Upon wallet creation, users can copy their **secret key once**, after which it becomes inaccessible. It is the **user’s responsibility to store it securely**. #### **🔹 Secure Transaction Execution** * During a trade, the **private key is required to sign the transaction** but is never exposed. * The key is securely stored in **AWS Secrets Manager** and **only accessible by the Lambda function executing the trade**. * The Lambda function operates under a **strict IAM role**, allowing **read-only access to the key at runtime**—**no one, including our team, can retrieve or view it manually**. * **The private key is only decrypted in-memory at runtime and never stored, logged, or written to any database.** #### **🔹 End-to-End Security Architecture** * We use **secure, end-to-end encrypted API Gateways** to facilitate **authorized interactions** between our **Discord application and the Lambda functions** executing trades. * This ensures that **all data transmissions remain encrypted and protected**, preventing any unauthorized access or external interference. #### **🔹 Transparency & Verification** * We are **willing to demonstrate our full security process** in a live screen-sharing session, walking through our implementation and safeguards in place. * At **no point** does MoonMints—or anyone else—have direct access to a user’s private key. With MoonMints, you can **trade confidently** knowing that **your funds, keys, and data remain secure** at all times. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://moonmints-gitbook.gitbook.io/moonmints/getting-started/security-moonmints-discord.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.