Wallet Security

Raze Vault's wallet-first authentication model means your wallet is the gateway to the platform. The security of this connection is paramount.

Authentication Security

Signature Verification

Authentication is based on cryptographic wallet signatures — not passwords. Your wallet's private key never leaves your device. When you connect to the platform, you sign a message that proves ownership of your wallet address without exposing any sensitive information.

Session Management

Authenticated sessions use secure JSON Web Tokens (JWT) with expiration controls. Sessions are stateless and cannot be hijacked without your wallet signature.

Smart Contract Wallet Support

For multisig and smart contract wallets, the platform uses adapted signature verification that accounts for the unique authentication flow of these wallet types. This ensures that institutional wallets with multi-approval requirements are fully supported.

Non-Custodial Design

Raze Vault operates on a non-custodial basis. You retain control of your wallet and its private keys at all times. The platform interacts with your assets only through authorized, transparent on-chain transactions.