The Security Paradigm
In decentralized finance (DeFi), security is paramount. FRB Agent adopts a strictly Non-Custodial architecture. This means the software never takes possession of user funds or private keys. The user remains the sole custodian of their assets at all times.
Key Management
- Local Enclave: Private keys used for signing bundles are stored in an encrypted local keystore on the user's machine. They are never transmitted over the network.
- Ephemeral Signing: Keys are loaded into memory only for the duration of a specific signing operation and are immediately cleared.
- Hardware Wallet Integration: For maximum security, FRB Agent supports hardware wallet signing, where keys never touch the computer's memory at all.
User Sovereignty vs. Hosted Services
Hosted Services (Risk)
In a hosted bot environment, you deposit funds into a smart contract controlled by the service provider.
- Risk: If the provider is hacked or acts maliciously, your funds are lost.
- Control: You have no control over the execution logic.
FRB Agent Infrastructure (Safe)
With FRB Agent, you effectively run your own "trading desk" infrastructure.
- Risk: Minimized to your own operational security. The software itself has no "backdoor" access.
- Control: You define every parameter of the execution. The agent is merely an automation tool.
Permissioned Operations
Every critical operation within the FRB Agent ecosystem requires an explicit cryptographic signature:
- Start/Stop Strategy: Requires a signature to authorize the agent to act.
- Withdraw Profits: Requires a signature to move funds from the execution contract to your wallet.
- Update Configuration: Requires a signature to change strategy parameters.
This Signature-Gated model ensures that even if the local machine is compromised, an attacker cannot arbitrarily drain funds without the user's active participation (signing).