2️⃣Security - MoonMints Discord

Security at MoonMints 🔒

Security is our top priority, and we implement industry-leading measures to ensure user wallets and funds remain fully protected. Here’s how we achieve this:

🔹 Private Key Encryption & Storage

• User wallets are fully encrypted using AWS Secrets Manager with AES-256 encryption.

• Private keys are never stored in plaintext at any point. Upon wallet creation, users can copy their secret key once, after which it becomes inaccessible. It is the user’s responsibility to store it securely.

🔹 Secure Transaction Execution

• During a trade, the private key is required to sign the transaction but is never exposed.

• The key is securely stored in AWS Secrets Manager and only accessible by the Lambda function executing the trade.

• The Lambda function operates under a strict IAM role, allowing read-only access to the key at runtime—no one, including our team, can retrieve or view it manually.

• The private key is only decrypted in-memory at runtime and never stored, logged, or written to any database.

🔹 End-to-End Security Architecture

• We use secure, end-to-end encrypted API Gateways to facilitate authorized interactions between our Discord application and the Lambda functions executing trades.

• This ensures that all data transmissions remain encrypted and protected, preventing any unauthorized access or external interference.

🔹 Transparency & Verification

• We are willing to demonstrate our full security process in a live screen-sharing session, walking through our implementation and safeguards in place.

• At no point does MoonMints—or anyone else—have direct access to a user’s private key.

With MoonMints, you can trade confidently knowing that your funds, keys, and data remain secure at all times.