How We Ensure Data Privacy and Security
Last updated
Last updated
With Refractor Node Service (RNS), we prioritize the data privacy and security of our Off-chain Service Endpoints (OSEs) above all else. We understand that OSEs entrust RNS with their sensitive and private data, and we take this responsibility seriously. To ensure the highest level of protection, we have implemented a multi-layered approach that combines cutting-edge hardware, advanced software, and strict operational procedures.
At the core of our security infrastructure are our specialized servers, powered by Intel's technology. This advanced hardware creates a verifiable Trusted Execution Environment (TEE) in which the open-source ETL connectors handle OSEs' sensitive and private data with the highest level of security.
The TEE can be conceptualized as a reverse black box environment that allows the Refractor software to execute while being completely shielded from external manipulation (). This secure enclave ensures that the software execution remains encrypted and unaltered, even from the server itself. By employing Intel SGX and TEE technology, we guarantee that the specific OSE data remains secure and tamper-proof throughout the entire process.
To provide OSEs with unequivocal assurance of the integrity of their data processing, Refractor generates a cryptographically verifiable provenance for each execution of the ETL software. This provenance serves as an immutable and auditable proof that the execution of the Refractor software has been successful and has not been subjected to any tampering or manipulation.
By leveraging this verifiable provenance, Refractor Node Service can efficiently handle all server maintenance tasks on behalf of the OSEs without having the ability to tamper with the OSEs' data. This innovative approach ensures the privacy and security of OSEs' data while enabling seamless server management.
In certain scenarios, such as when an OSE has special service requests related to their data, Refractor Node Service may require direct authorization from the OSE to manipulate their data. This authorization process is strictly controlled and follows a rigorous protocol to ensure that data access is granted only under the explicit consent of the OSE. We adhere to the principle of least privilege, ensuring that access is limited to the specific scope and duration necessary to fulfill the service request.
To ensure the utmost reliability and availability of our services, all Refractor servers are maintained with maximum industry-standard redundancy. Our infrastructure is designed to deliver an impressive 99.99% uptime, ensuring that OSEs' serverless node hosting remains uninterrupted and highly available. We employ advanced techniques such as load balancing, failover mechanisms, and geo-redundancy to minimize the risk of downtime and maintain optimal performance.
At Refractor, we are committed to providing OSEs with a secure, reliable, and efficient serverless node hosting solution that prioritizes data privacy and security. By combining state-of-the-art hardware, advanced software, and stringent operational procedures, we ensure that OSEs' sensitive data remains protected at all times.
Our Refractor Node Service, powered by Intel SGX and TEE technology, offers a turnkey solution that abstracts away the complexities of server management and enables OSEs to focus on their core business. With cryptographically verifiable provenance, strict authorization protocols, and industry-leading redundancy, we provide OSEs with the peace of mind that their data is secure and their services are highly available.
By leveraging the Refractor platform, OSEs can confidently participate in the Web3 ecosystem, unlocking new opportunities for growth and innovation while maintaining the highest standards of data privacy and security.
