Protocol Architecture

System Architecture

Frontend Components

Investor Frontend

The Investor Frontend provides a comprehensive user interface designed specifically for investors to interact with thePAC dApp. This interface enables users to access detailed product information, monitor their investment portfolio, and view complete transaction histories. Through this platform, investors can efficiently execute subscription and redemption operations, access real-time investment data, and track their transaction status. The interface prioritizes user experience while maintaining robust security measures, ensuring that investors can confidently manage their investments through a seamless and intuitive interface.

Manager Frontend

We have the Manager Frontend which serves as a powerful administrative interface that enables our operators to effectively manage all aspects of the system. This comprehensive management platform handles critical functions including KYC application processing, whitelist and blacklist management, and product lifecycle oversight. We can manage both on-chain and off-chain subscription/redemption processes, configure user roles, and process multi-signature messages through this interface. The platform provides sophisticated tools for monitoring system performance and generating administrative reports, ensuring efficient platform operation and maintenance.

Backend Services

Agent Service

The Agent Service functions as an automated system responsible for managing product cycle transitions and parameter updates on the blockchain. When a product cycle reaches its conclusion, this service automatically processes the administrator-configured parameters for the new cycle, including updated product specifications and cycle parameters. The service ensures accurate and timely synchronization between off-chain management systems and on-chain data, maintaining system consistency and reliability throughout product lifecycle transitions.

User & Role Service

The User & Role Service manages the platform's comprehensive user authentication and authorization framework. This service handles user permission management and role assignment, implementing sophisticated access control mechanisms to ensure secure system access. It maintains user profiles, manages authentication processes, and enforces role-based access controls across all platform operations, ensuring that users can only access functionalities appropriate to their assigned roles.

Product & Epoch Service

The Product & Epoch Service oversees the complete lifecycle management of products and their operational periods. This service handles all aspects of product administration, including creation, configuration, and state transitions throughout the product lifecycle. It manages epoch transitions, validates product parameters, and ensures proper synchronization of product data across all platform components, maintaining consistency in product operations and data management.

Data Analysis Service

The Data Analysis Service provides comprehensive analytics and reporting capabilities for the platform. This service processes raw data from various system components, generates statistical analyses, and produces detailed reports on platform performance and operations. It enables data-driven decision-making by providing insights into user behavior, product performance, and system efficiency, supporting both operational management and strategic planning through sophisticated data analysis tools.

Smart Contract

Security Issues

Authentication and Authorization

The platform implements a robust authentication system leveraging wallet signature verification, which provides a secure and seamless user authentication experience. This approach combines the security benefits of cryptographic signatures with the convenience of Web3 wallet integration. The system employs a granular role-based access control framework that precisely defines and enforces user permissions across all platform operations. This ensures that users can only access and execute operations within their authorized scope, with all access attempts being logged and monitored for security purposes.

Data Encryption

To protect sensitive information, the platform employs comprehensive encryption strategies for both data at rest and in transit. All sensitive data stored in the database is encrypted using industry-standard encryption algorithms, with encryption keys being securely managed and regularly rotated. The platform ensures secure communication between frontend and backend systems through HTTPS protocol implementation with TLS 1.3, protecting all data transmissions from potential interception or manipulation.

Smart Contract Security

Smart contract security is ensured through a rigorous code audit process conducted by reputable security firms, complemented by automated vulnerability scanning and comprehensive testing procedures. The contracts implement sophisticated access control mechanisms through whitelist and blacklist functionalities, effectively preventing unauthorized addresses from interacting with the system. These security measures are regularly reviewed and updated to maintain the highest level of protection against emerging threats while ensuring seamless operation for authorized users.

Multi-Signature Operations

The platform integrates Safe (safe.global) as its multi-signature wallet solution for critical operations. This implementation requires multiple authorized signers to approve significant transactions or system changes, significantly reducing the risk of unauthorized or malicious actions. In a typical 5/7 multi-signature configuration, any critical operation requires approval from at least five out of seven designated signers before execution. This approach ensures that all significant administrative actions on the blockchain undergo thorough review and consensus, providing an additional layer of security for high-impact operations.