QELT blockchain - World's first RWA-exclusive EVM Layer-1 blockchain platform
Navigation
Home
Ecosystem
RWA
Token
Developers
Mainnet
Testnet
About
DEX
Bridge
Staking
AI Agents
AI Tools
QELT Hub
dApps
QXMP.aiQELTScanQELT DEX
← Back to dApp Docs

Security Architecture

QELT Hub implements a multi-layered security architecture covering authentication, wallet encryption, content protection, and comprehensive audit logging to protect users and their assets.

Jump to:
Auth SecurityWallet SecurityContent SecurityAudit LoggingAdmin System

Authentication Security

Authentication is secured through multiple layers of protection, from token storage to password hashing.

JWT HTTP-Only Cookies

Tokens stored as HTTP-only cookies, not accessible via JavaScript (XSS-proof)

Argon2id Password Hashing

OWASP-recommended password hashing algorithm for maximum resistance against attacks

CSRF Protection

Via SameSite cookie attributes preventing cross-site request forgery

Rate Limiting

Applied to all authentication endpoints to prevent brute-force attacks

Session Tracking

Each session records IP address, user agent, and last active time

Auto Token Refresh

JWT tokens automatically refreshed every 5 minutes while active

Wallet Security

Custodial wallet private keys are protected with industry-leading encryption standards. Private keys are never stored in plaintext.

AES-256-GCM Encryption

Military-grade encryption for all custodial wallet data

Argon2id Key Derivation

64 MB memory, 3 iterations, 4 threads for brute-force resistance

Ephemeral Decryption

Private keys decrypted only momentarily during transaction signing, then cleared from memory

Wallet Access Logging

Every wallet access (creation, decryption, seed phrase view) is logged

Seed Phrase Verification

Users must confirm they've backed up their seed phrase before proceeding

Password Re-encryption

Wallet data automatically re-encrypted when password changes

Encryption Parameters

Algorithm:AES-256-GCM
Key Derivation:Argon2id
Memory Cost:64 MB
Time Cost:3 iterations
Parallelism:4 threads
IV Length:128 bits
Salt Length:256 bits

Content Security

Multiple layers of content protection ensure the platform remains safe and spam-free.

Rate Limiting

Applied to all content creation endpoints

Spam Detection

Keyword-based spam analysis blocks known spam phrases

Content Quality Checks

Minimum lengths, duplicate detection (85%+ similarity)

Community Reporting

Automatic penalties after 3 reports threshold

Soft Deletion

Deleted content is preserved for auditing and review

Rapid-Fire Detection

10+ actions per minute triggers automatic cooldown

Audit Logging

All security-relevant actions are logged for accountability and forensic analysis.

Logged Events

  • Login and logout events
  • Wallet creation and access
  • Seed phrase views
  • Content moderation actions
  • Admin actions and role changes
  • Failed authentication attempts

Admin System

QELT Hub includes a comprehensive admin panel for platform management with role-based access control.

Roles

RolePermissions
USERStandard user access
ADMINModerate content, manage rooms, view analytics
SUPER_ADMINFull system access, user management, global settings

Admin Features

Users Management

View all users, change roles, ban users

Content Moderation

Review and remove posts and comments

Chat Management

Create, edit, delete rooms; manage members; view bans

Audit Logs

View all security-relevant events and actions

Next Steps

Explore the full dApp documentation or dive into specific platform features.

Platform OverviewAuthenticationWallet System