System security
AAX is invested in complying with the Cryptocurrency Security Standard (CCSS), a universally recognized standard for securing cryptocurrency systems. It consists of a comprehensive list of security measures for any system that stores, transacts, or accepts cryptocurrencies.
Account security
All accounts on AAX require Two-Factor Authentication to operate. In addition to a username and password, users will need to enter a temporarily valid, one-time code, which adds an extra layer of security to their account. While there is a risk that a single factor such as a password may be compromised, requiring a second factor can effectively mitigate risk.
Transaction security
AAX has built a proprietary multi-currency wallet system. This system complies with industry standards, is multi-signature and offers no single point of failure. There is no dependency on a single source of security and robust recovery protocols are in place.
Additionally, AAX has Hardware Security Modules (HSMs) in place to protect end-user private keys used to co-sign transactions.
Storage security
The majority of digital assets on AAX are held in secure offline storage facilities, leveraging industry-standard encryption technologies across multiple tiers. Sensitive data that normally resides on company servers is disconnected entirely from the Internet.
Report security issues on AAX
If you need any assistance with security or want to report any vulnerabilities or critical issues, please share the details to security@aax.com.