Security
Our primary validator runs inside secure data center facility in Sofia, Bulgaria with significant security and performance optimizations to achieve the highest APY. We place an uncompromising emphasis on ensuring a secure and stable validator, implementing industry-leading security protocols endorsed by top-tier technology firms. Our server benefits from round-the-clock staffing, comprehensive CCTV surveillance, and two-factor authentication protocols at all points of entry.
Sila Systems operates in Telepoint Ltd. data center located in Sofia and is TIER 3+ Carrier Neutral Data Center in Bulgaria. The whole infrastructure of Telepoint data centers has been designed and built in accordance to the highest standards for quality and security ISO 9001:2015, ISO 27001:2013 and PCI DSS, which are a benchmark for quality of services.
DC Features:
- World-class service and support to customers
- 24x7x365 On-site Monitoring and Support Center (MSC)
- Perfect Service Track Record (100 % availability)
- 24x7x365 CCTV and physical security
- 24x7x365 Customer access
- 24x7x365 Remote Hands & Eyes service (HES)
- Private parking lot
- Convenient load/unload area and transport machines for heavy equipment
- Personal Account Manager contact
SLA AVAILABILITY
Parameter
Value
Guaranteed
Single Power Feed
99,997
Availability in %
Redundant Power Feeds A+B
99,99999
Availability in %
Temperature
20±2
°C
Relative Humidity of the Air
50±10
%
Access
24x7x365
h
Response Time
60
min
More info about DC profile here.
We place an incredibly strong emphasis on security measures given the risks of operating infrastructure supporting digital assets. Our extensive experience in IT systems security allows us to protect these sensitive services with utmost care. Our servers are set up in such a way that we can easily circumvent cyberattacks and attempts of unauthorized access. DDoS mitigation and protection services are provided by our affiliate Telepoint Ltd. and there are several system observation protocols in place that help swiftly take care of unanticipated incidents. Telepoint Ltd. carries out SoC 2 Type-2 security checks on a routine basis in order to maintain the highest possible levels of safety and integrity. Sila Systems devops also carries out manual checks every week to make sure that the nodes are performing at the highest possible level with no risk to the system. Encryption of secrets and credential management procedures are always at the ready.
High-level summary of our most important measures:
Constant monitoring & Failover
We know how our validator performs at all times. If something irregular happens to it, we will be notified instantly. In case of unexpected downtime in the main validator, a hot spare is set to take over automatically within seconds.
Updating regularly
We get notified about new software releases (mainnet & testnet) within minutes, and perform immediate updates in accordance with official recommendations.
Security patching & timely updates
Operating systems are regularly patched with vulnerability updates. We stay on top of the latest security updates and patches by checking for and installing Linux security patches daily. Kernel updates are coordinated with software updates to minimize downtime (unless they are critical).
Strict firewall settings
We only expose ports which are absolutely necessary to operate: SSH and the minimum range required by node. Traffic to any other port is blocked. Only necessary TCP/UDP ports are open to public access.
Key management
All validator private and withdrawal authority keys are always stored on our secure private management systems which are blocked from outside access. All validator entities and voting keys are backed up in a secure location.
System access (hardened SSH configuration)
We only use public-key cryptography for remote access. Password login and outdated key algorithms are disabled.
Strict identity management
Services always run as an unprivileged user and are containerized when feasible. We run separate user accounts for the administrator and node users, who does not have sudo privileges. “Root” account is never used for services or system administration.
Considering new measures regularly
Our default is “best practice”. When we find a better practice, it becomes our new default. And we are always looking.
We guarantee, if you choose to stake your crypto assets with Sila Systems, besides the excellent investment you’re making, you’re securing peace of mind in a bastion of technological masterpiece.