Private Vault
1. What is Universe Private Vault?
The Private Vault is a highly secure version of the smart vault specially designed and developed by Universe for high-net-worth individuals and institutions. The private vault can guarantee the sacred inviolability of user assets through multiple security mechanisms.
Users can create and own their private smart vaults on the chain, where they can set and change the whitelist of the vault. Each smart vault will autonomously utilize a pre-set quantitative management strategy based on its risk profile. The strategy is responsible for dynamically adjusting users’ liquidity positions in the Uniswap V3 pools and helping them to earn maximum profit.
2. How does Private Vault prevent business loopholes and backdoors?
Universe Finance guarantees the security of the contracts through the audit of their security protocols by foremost experts in the blockchain field such as Certik and Peckshield. We will continue to engage with other blockchain audit firms in the future to provide high-level security protection to our users.
While we set out to ensure that our users can enjoy using our platform worry-free, we understand that audits may not catch the latest virus that attacks the platform with the constant advancement in technology. As such, Universe also employs multiple security solutions to ensure that users’ assets are safe in hacks.
Note:
You can find Certik audit report address here: https://www.certik.org/projects/universefinance
You can find Peckshield audit report address here: https://github.com/peckshield/publications/blob/master/audit_reports/PeckShield-Audit-Report-UniverseFinance-v1.0.pdf
3. How does Private Vault prevent external hacker attacks?
Private Vault uses a unique whitelist KYC mechanism to prevent external hacker attacks.
Whitelist KYC mechanism: only addresses hardcoded on the whitelist can interact with the private vault. The owner of the private vault can only modify this whitelist. The whitelist mechanism ensures that external hackers cannot launch attacks on the contract and solves the possibility of external hacker attacks from the root cause.
With the protection of the whitelist KYC mechanism, the external hackers cannot use contract vulnerabilities to attack the contract and cause the loss of the assets of the vault owners even when there are business vulnerabilities on contract code.
4. How does Private Vault prevent lightning attacks?
Private Vault solves the problem of lightning attacks at the root through a unique EOA mechanism.
Externally Owned Account (“EOA”) mechanism: all addresses in the private vault can only be accessed through EOA and not through the Contract Accounts. Because hackers can only launch lightning attacks through Contract Accounts, the EOA mechanism isolates the Contract Accounts and root out the conduit for lightning attacks.
Note: The Ethereum chain has only two types of accounts - EOA and Contract Account. EOA is personal wallet addresses, while Contract Account has a different wallet address.
The EOA mechanism prohibits the interaction between the contract trading account and the private vault. Although it seems that this sacrifices the scalability of private vault contracts, it enhances the security considerably.
5. How does Private Vault safeguard theft from within Universe?
The private vault prevents theft through a simple and powerful authorization mechanism.
Only the private vault owners can switch between the different smart strategies in the vault.
Only the private vault owners and the users in the whitelist can withdraw funds from the vault.
Only the private vault owner can update and transfer the ownership of the vault.
Smart strategies are not able to be switched without the owner’s authorization. The smart strategies are programmed only to rebalance the user’s funds, NOT transfer and move funds in or out of the Contract Account.
Moreover, only whitelisted KYC addresses can interact with the rebalancing of your investment portfolio by smart strategies.
Even if external hackers attack the Contract Account, they will not be able to reach the EOA.
Note: We mainly focus on the audits of our codes on the design of our security system.
The Private Vault is an innovative invention by the Universe Finance team for Defi security which has the highest level of protection across all Defi projects. The security of users’ funds is the prime priority of the Universe’s team and will always be on the top of our schedule.
Last updated