Security approach

1. Why is it so important?

The system’s security is one of the guarantors of safe transactions and proper protection of user’s sensitive information. Huge funds are stored on a currency exchange so it is paramount that the system characterizes itself by complex protection mechanisms of the highest quality. Darb Finance does it’s best to ensure that the exchange is a platform that is safe, hacker-resistant, bug-free and that it provides maximum protection of user’s personal and financial information.

Darb Finance uses multiple security measures to prevent possible security violations. These methods include penetrative tests of the system, AML (Anti Money Laundering) policies, a Bug Bounty program, anti-phishing rules, and two-factor authentication.

The system’s security alone is not enough to provide full security to the users and their funds. The second pillar of online security is the user’s proper behavior, which means adherence to security rules and protection of the user’s own information.

As a user of Darb Finance, remember to not give anyone your login information. Also, ensure that you are logging in from a protected network and always check who is the real sender of received e-mails. Set up your anti-phishing code in the user panel to ensure that the received e-mails come from Darb Finance. The code is a few numbers chosen by the user which will show up at the top of every e-mail from Darb Finance. Choose your security preferences in the user panel. Set up a two-factor authentication – by an e-mail, a text message or a Google Authentication account.

2. Bug Bounty Program

This is a program aimed at finding possible bugs in the system. The program was created for all, even unregistered, users. Every Darb Finance user can try to find bugs in the system and receive a monetary reward for finding them and giving us the method of the bugs’ reproduction. Bug Bounty also applies in cases where the user manages to break the security - for example, the user is able to withdraw money from another user’s account or circumvent the two-factor authentication. In such cases, the user will be rewarded if Darb Finance is informed about the security break, how it occurred and the nature of the company’s mistake.

Darb Finance puts a lot of emphasis on security, stability and flawless running of the system. We are confident that the platform is safe, scalable, break-free, as well as bug-free. However, the creators and the developers are open to any suggestions concerning the security and functionality of the platform. That is why the Bug Bounty program was created. It is a challenge for the users and another form of finding possible, unintended and hard to detect bugs.

How does the Bug Bounty program work? Contact us if you find a bug in Darb Finance or circumvent the security. Give us the information about the bug and the method of its reproduction through an email, a contact form or a live chat. We will verify your submission and if it is justified, we will pay you a reward of $50,000. Important information - the bugs cannot be publicized! If you tell us about a bug without providing the method of its reproduction, you will not be rewarded.

3. Anti-phishing

Phishing of login and other sensitive data by impersonating trusted sites is one of the popular methods used by hackers. Phishing includes sending emails that are almost identical to emails sent by sites trusted by the user.

Darb Finance introduced an anti-phishing solution which aims at protecting logged in users from being a victim of phishing.

The user can set a special individual anti-phishing code in the user panel. Those few numbers will always appear in emails sent to the user by Darb Finance. After confirming that the code set in the panel is the same as the code in the email, the user will be sure that the received email is authentic, the information contained in it is true and the operations that they will perform according to the instructions written in the email are safe and verified.