The Security of FiiiPay & FiiiPOS

On June 5th and 6th, me and my marketing team colleagues attended the Singapore Smart Nation Innovation / Innovfest Unbound event, setting up booth and pitch to promote our FiiiPOS and FiiiPay. We received a lot very useful feedback and comment about our product. The most frequently asked question is related to security which I would like to explain more in this post.

HTTPS

Firstly, the most common way to secure a communication channel is to use encryption. Our POS terminal and digital wallet communicate with our payment gateway API using SSL. It is to prevent user data from being leaked when users or merchants are connecting their devices to a public WiFi. You do not know there may be someone who is also connecting to the same WiFi network implanted some sniffing script to the router to monitor the network traffic. If the communication is not encrypted, the hacker can see the data flow between your POS terminal or digital wallet.

Image via contextis.com

Therefore, we strongly encourage our merchant who is using our FiiiPOS terminal not to connect to a public free WiFi hotspot, but putting up a SIM card into the POS terminal to use own network instead.

DNSSEC

All our public domain are protected with Domain Name System Security Extension (DNSSEC). It is a mechanism to prevent hackers from hijacking the DNS and faking the response data to the user, which is known as man-in-the-middle attacks.

Image credit to Michael Earls

Firewall & DMZ

FiiiPay and FiiiPOS servers are secured with perimeter network (known as Demilitarized Zone - DMZ). All the servers are protected with firewall rules that locked down most of the network port access. The common default ports are being changed to random port to prevent hackers from using brute force attack to guess remote access password.

The web and API servers are separated from the database servers where by the public access servers sit in the DMZ but the database server sit in the trusted zone or local area network which restricted to be accessed by the dedicated servers and IP addresses only.

The Vault

With the firewall setup above, all our cryptocurrency nodes are being protected and the nodes access are being restricted. We call it the vault as it can only be accessed by the approved staffs. The servers password are changed frequently and it is strongly type password. The cryptocurrency private key are backed up regularly.

Full Disk Encryption

All the servers storage such as hard disks and solid state disks are all fully encrypted. The servers are setup in a remote data center managed by the service provider. The servers contain the very valuable cryptocurrency private keys. In order to prevent the system engineer in the data center access to the server disks, the disks are fully encrypted. So that, it could prevent the system engineer from trying to unplug the disk and put it into another server or computer to attempt to obtain the private key.

Mobile Application Digital Signature

All the FiiiPay and FiiiPOS application are digitally signed and published to the application store. FiiiPOS application can only be installed to the POS terminal. Hacker cannot install any malware, script, key logger or applet to the POS terminal physically or remotely. So the chances of Spectre and Meltdown exploit is very low and near impossible.

Two Factor Authentication (2FA)

FiiiPay & FiiiPOS provide optional feature for the users and merchants to enable which is the two factor authentication. By default, SMS authentication is enabled. When user or merchant attempt to withdraw cryptocurrency out from the digital wallet, they need to provide the OTP from the received SMS.

We also provide optional Google Authenticator and email authentication option for 2FA in order to reduce the risk of user crypto being stolen by the hacker who has cracked the user password and gained access to the user account.

Artificial Intelligent

FiiiFinance will be equipped with machine learning capability to review all the crypto withdrawal request submitted by the FiiiPay and FiiiPOS users. It collect all the withdrawal timestamp, IP address, geolocation, device ID, operating system, withdrawal amount, crypto type, etc data. Based on the user app usage behavior, pattern and the withdrawal request history, it can raise alert to the finance team and put the withdrawal transaction on hold for human review when it detect unusual activity for a particular account. This security measurement can ensure the lower risk of the crypto to be stolen by the hacker who has gained access to a FiiiPay/FiiiPOS user account.

Payment Code Algorithm

The QR code, Bluetooth and NFC payment mechanism actually rely on HMAC (hash-based message authentication code) to generate the unique OTP which is impossible forge and brute force attack. The generated payment code is always unique to different account at different time and it will be valid for a short period of time.

Summary

Our system architecture are setup in enterprise standard. Our customer digital asset and data are the utmost important, hence we are very serious and invest heavily on system and network security. Cyber security is always the hot topic in blockchain world as we occasionally read the news about X exchange platform had been hacked and lost X million of USD worth of cryptocurrency. We ensure this tragedy will not happen in our platform.

If you are a cyber security expert or ethical hacker, please drop me a message by connecting to me at LinkedIn. We are planning for a hackathon event for our product to look for security exploit.

iOS - AppStore
Android - PlayStore

If you are interested in our multi-cryptocurrency POS machine - FiiiPOS, please drop me an email at sylvester.lee@fiiipay.com

If you are interested in our project, please visit our website at https://fiii.io

Facebook - https://www.facebook.com/fiiipay/
Telegram - https://t.me/fiiicoin

Hybrid Payment Network

Recently a lot of fans are curious about how our crypto digital wallet and payment work. Our payment solution has fasten the bitcoin payment process. As you may not know, a bitcoin transaction need at least 9 blocks confirmation in order to consider the transaction is confirmed, otherwise, the transaction has the potential to get reverted. Why the transaction get reverted if you ask, it is because your transaction in the block is being mined by a miner who has slow network connection, but another block which does not have your transaction included has been mined successfully at the same time by another miner with faster network and their block has been confirmed by majority of the peer nodes. Therefore, it is better not to assume all transaction will be confirmed in the matter of time.

Problem

Bitcoin transaction confirmation is slow. A block is propagated every 10 minutes, and to get 9 block confirmation, you need to wait 1 hour and 30 minutes to get your transaction confirmation. If you are trying to buy a cup of coffee using bitcoin, are you willing to stand in front of the cashier and wait for your payment is being confirmed for at least 1 hour? I doubt so.

Workaround, Not Solution!

Hence, we come out a workaround to solve this problem. If you understand how bitcoin work and how data are distributed among peers in a decentralized network, you should know there is a no silver bullet for the slow transaction confirmation problem. However, there is a project worth one's while to look into which has the capability to solve today's cryptocurrency common slow transaction problem: IOTA. It is a whole new solution design, it has no blockchain concept, it has no "mining" transaction confirmation concept, it uses Directed Acyclic Graph (DAG) or so called Tangle technique which rely on the network peers to co-audit and co-govern transactions with each other. The more the peers participate in the network, the faster the transaction to be confirmed and the harder the data can be tampered eventually the higher the security.

Back to FiiiPay payment solution, we go for hybrid. The reason is it is not feasible to just purely rely on decentralized network to achieve everything. I know a lot crypto fans out there are condemning about any cryptocurrency that has centralized service is not a good crypto and it could be a scam project which I actually disagree. If you truly understand how blockchain work, you should realize that in order to fasten the transaction confirmation, you need to sacrifice the security by increasing the fault tolerance level, the transaction audit is going to be lenient, validation work is reduced, hence it is vulnerable for attack.

Hybrid Payment Network

Firstly, we treat bitcoin and other cryptocurrency wallet as a bank account instead of a digital wallet. In order for the users to start using FiiiPay, they have to transfer bitcoin from their bitcoin wallet to our bitcoin wallet. Each FiiiPay user account will be given a unique bitcoin address. We have a separate cryptocurrency service, FiiiFinance, responsible to track the amount of bitcoin which has been deposited to the particular address that owned by particular FiiiPay user account.

The deposited bitcoin from the user will be recorded in our centralized database. From here onward, users proceed to transfer bitcoin to another FiiiPay user, or start making bitcoin payment to merchants who use FiiiPOS. All the transaction happen within our payment network. Therefore, we are no different from PayPal or Alipay.

Scalability & High Availability

Our architecture design is a distributed system design that support load balancing, it can easily scale by adding hardware to the network when the demand is getting higher. Currently, a single server can support up to 1500 transaction per second, for three servers can support up to 4500 transactions per second. Furthermore, it promote high availability by having multiple servers online at the same time.

Network Security

The API servers are only exposed to the public in strict firewall rules network zone, the FiiiFinance and KYC sensitive data servers are hosted in trusted zone which are interconnected within a secured tunnel virtual network. Our digital assets, the crypto nodes, are separately setup in different region. It is our risk mitigation strategy to avoid creating a single point of contact for hacker to access into our nodes.

Data Protection & Disaster Recovery

Since all the crypto transaction are happening within our network, our database to be of utmost importance to ensure the data are well kept and recoverable due to technical failure or disaster, and also making sure performance meet the expectation and does not affect the user experience.

Artificial Intelligent

FiiiFinance will be equipped with machine learning capability to review all the crypto withdrawal request submitted by the FiiiPay and FiiiPOS users. It collect all the withdrawal timestamp, IP address, geolocation, device ID, operating system, withdrawal amount, crypto type, etc data. Based on the user app usage behavior, pattern and the withdrawal request history, it can raise alert to the finance team and put the withdrawal transaction on hold for human review when it detect unusual activity for a particular account. This security measurement can ensure the lower risk of the crypto to be stolen by the hacker who has gained access to a FiiiPay/FiiiPOS user account.

Summary

Hybrid Payment Network is a workaround for all crypto common slow transaction confirmation problem. It enable any crypto payment to be made immediately. This solution is not new as it is commonly found in today's cryptocurrency exchange platform.

Our FiiiPay Beta version is ready for download. Feel free to share your thought at the comment section below.

iOS - AppStore
Android - PlayStore

If you are interested in our multi-cryptocurrency POS machine - FiiiPOS, please drop me an email at sylvester.lee@fiiipay.com

If you are interested in our project, please visit our website at https://fiii.io

Facebook - https://www.facebook.com/fiiipay/
Telegram - https://t.me/fiiicoin