Preparation and planning are important before doing almost anything, and the Development platform is important. The Web development phase — whether it’s a trading platform or an SaaS platform or a business site — can be complex. Let’s take a look at the features that must be available in a digital asset exchange to meet the needs of customers and owners.
I. Main features
1. Flexibility for customization and extension
2. The security
3. Easy to manage
4. User latency is extremely short and each platform consists of separate modules, known as layers.
Each function is independently dependent on the data received and the switching interface. For example, cash flow engines, services for user processes, back ends and integration with the UI (front end). Layer to layer apis and requests organize connections. Typically, each of them is located on a separate machine/server.
Second, the platform itself — the back end. With it, you can easily extend your business to Web applications, desktop applications, mobile applications, and more.
Let’s start by identifying common vulnerabilities and problems you may encounter with system security:
2. Unauthorized access to the administrator account (hacking)
3. Access the server
4. Rogue processes due to permissions
5. Security issues in the external platform user accommodation. The first is personal data security, and access to the system must be tightly controlled.
Three, common tools to protect this layer:
1. Use secure and protected libraries and frameworks.
2. Two-factor authentication using Google password.
3. Request documents (KYC and AML) from the user.
This mainly involves the exchange of digital assets with FIAT and vice versa. For digital asset to digital asset pairs, there is now no need to upload a file. In most cases, you only need an international passport, driver’s license or ID card; There are also bank statements or utility bills for level 2 verification.
4. The administrator manually confirms large and/or large transactions. Cold wallets are optional and highly recommended. Administrator authority, whether in digital asset exchange built using blockchain technology, or in mobile application development trends.
Fourth, any trading platform needs an administrator. To protect yourself and your system, check the following list:
1. Assign responsibilities and permissions of administrators. Create additional groups and roles. Each person only manages his small portion and has no access to much more.
2. Team solutions. Administrators from different groups must identify particularly important functions.
3. There are at least two distinct areas of development and production. Access to each group is limited. Manual database transfer, controlled by senior management, CTO.
Malicious processes. Malware caused by intruders.
1.DDoS attack requests must pass through some server and be clean for the final project.
2. Firewall vulnerabilities. Their solution is simple – have a professional system administrator, or a great hosting service. AWS is probably the best solution, at least if your government allows hosting your platform in the cloud. Otherwise, you have to take a closer look at dedicated servers with load balancing.
3. Authorized and protected access rights. 2FA is mandatory whether you choose Google Authenticator or SMS, or both options.
4. Notification of suspicious activity from the administrator. Well, you and your team must be up to date on the current phase.
Six, technical problems, sometimes unexpected things happen. Such as software problems or hardware damage. Everything should be monitored and have a plan B, backed up in a safe place.
1. Calculate changes, exchanges, and trade transactions, and return to action if there is a problem.
2. Verification of the sum.
3. Back up data periodically.
4. Available user log files.
5. Administrative notices when activities are insufficient.
Above is probably want to develop our own digital asset trading platform will function or need to have a problem, of course, no matter what things can’t be in a few words can be described clearly, in the process of actual operation may also have some other problems, but, as long as you want to do, everything is not a problem.