Hello. This is Klaytn API Service team.
Please refer to the following information about the mechanism of wallet key management.
KAS Wallet API creates wallet keys through HSM(Hardware Security Module). HSM complies with the following details:
1. HSM is based on FIPS 140-2, a U.S. government standard that specifies encryption and related security conditions that must be satisfied when dealing with sensitive data.
2. HSM maintains CC (Common Criteria) EAL 4 level which is the highest level of Common Criteria certification and is also required by many public organizations such as a network security solution.
Moreover, the Infra key that is integrated in HSM internally backs up the encrypted information of a private key. Therefore, it has the following security strengths:
1. Even if a wallet key is exposed due to external hacks or attacks by an insider of a headquarter, the key is ineffective because it is already encrypted.
2. Even if a wallet key is deleted due to system errors, it can be recovered by using the encrypted information of a private key. (Except for the case when an account deletion API is requested by a user)
Our KAS Service Team does out best to provide secure and stable wallet key management.
where you can register your inquiry.
Klaytn API Service team.