Security

Built so we couldn't steal from you if we wanted to.

Non-custodial by design. You create a Bitfinex API key with withdrawals disabled — Stratum can read your balances and place or cancel funding offers, nothing else.

01

Non-custodial

Your funds never leave your Bitfinex account. We hold no custody, no escrow. Stratum is a permissions-scoped automation layer — not a wallet.

02

Scoped API keys

You create the API key on Bitfinex with withdrawals disabled — Stratum never needs that permission. When you add a key we read its real scopes from Bitfinex and reject it outright if withdrawal (or trading) is enabled, so a withdraw-capable key is never stored or activated.

03

Encrypted at rest

API secrets are encrypted at rest with AES-256-GCM. Never logged in plaintext, never sent to telemetry, redacted from crash reports.

04

Reproducible builds

Deployed from pinned, reproducible Docker images with dependency and static-analysis checks in CI. An independent third-party security audit is on our roadmap.

05

Two-factor auth

TOTP two-factor with backup codes. Required before any API-key write. Broader passkey / hardware-key support is planned, not yet shipped.

06

Responsible disclosure

Found something? Email [email protected]. We acknowledge reports, fix verified issues quickly, and credit researchers who want it. A funded bounty program is planned.

What protects your account
API key created by you, with withdrawals disabled
Stratum only ever uses read + funding-offer scopes — never withdraw
Secrets encrypted at rest (AES-256-GCM), never logged
2FA required before any API-key write
Full data export available any time — your records leave with you
Compliance & roadmap
Data export
Every loan, offer, and ledger entry — self-serve
In app
GDPR DPA
For EU customers · on request
Request
Independent security audit
Planned — we will publish results here
Roadmap
SOC 2
Planned — not yet started
Roadmap