MUFEX
English
English
  • What is MUFEX?
    • πŸ“–Overview
    • 🏦MUFEX's Decentralized and Trustless Approach
    • πŸ“ˆMUFEX Perpetual Trading System
    • πŸ’ŽMUFEX Liquidity Pool
    • πŸ—ΊοΈRoadmap
  • Start Using MUFEX
    • πŸ‘©β€πŸš€Onboarding
    • πŸ’΅Depositing
      • Deposit FAQ
        • What should I do if the deposited currency has not been received?
        • How to solve recharge error?
        • Funds Recovery Guide
    • πŸ“ˆTrading
      • πŸ’ΉOpen/Close Positions
      • πŸ’²Trading Fees
      • πŸ–₯️Market , Limit & Conditional Order
      • πŸ›°οΈTake Profit & Stop Loss
      • 🏝️Isolated Margin/ Cross Margin
      • πŸ“Trading Rules
        • Risk Limit
        • Risk limit Parameters
        • Index Price
        • Mark Price
        • Liquidation Process
        • Margin Mechanism
        • Funding Fee
        • Insurance Fund
        • Auto-Deleveraging (ADL)
      • πŸ“‘Contract Specs
    • πŸ’ŽEarn
    • 🏧Withdrawal
      • Withdrawal FAQs
        • Why Hasn't My Withdrawal Been Credited?
    • πŸ’²Fee Rates
  • Technical Solution
    • πŸ—οΈTechnology Architecture
    • 🏦ZK-Rollup Asset Proof Design
    • πŸ›₯️Dunkirk Asset Recovery
  • What makes MUFEX secure?
    • πŸ“‘MUFEX Security White Paper
      • Security Team and Its Functions
      • Client Security
      • Endpoint Security
      • Network Security
      • Server Security
      • Application Security
      • Smart Contract Security
      • Data Security
      • Physical Infrastructure Security
    • πŸ“”Smart Contracts
    • πŸ”Audit
    • 🐞Bug Bounty
  • Testnet
    • πŸ§‘β€πŸ³Testnet Walkthrough
      • 1️⃣Get started with MUFEX
      • 2️⃣Get Test Tokens
      • 3️⃣Account & Assets
      • 4️⃣Depositing & Withdrawing
      • 5️⃣Trading
      • 6️⃣Earn via MLP
      • 7️⃣Feedback
      • 8️⃣Common Questions
  • Support
    • πŸ””MUFEX Announcement
      • Notice on Upgrade and Adjustment of the Affiliate System
      • MUFEX Upcoming Delisting of Trading Pairs Reminder
      • MUFEX Notice: Delisting of Certain Trading Pairs
      • MUFEX Coin Pair Adjustment Notice
      • MUFEX is Upgrading MLP and Copy Trading Features
      • MUFEX to Discontinue MLP and Copy Trading Services
      • MUFEX Announcement: Notice on Delisting COMPUSDT and GMTUSDT Contracts
      • MUFEX Announcement: System Upgrade and Trading Suspension Notice Postponement
      • System Upgrade and Trading Suspension Notice
      • MUFEX Cryptocurrency Exchange Service Area Statement:
      • Adjusting Parameters for Certain Contract Trading Pairs (2024/2/7)
    • ❓FAQ
      • How to Delete My MUFEX Account?
      • Why is my IP banned from service
      • Can I use MUFEX service if I don't have an web3 wallet
      • Why do I need to deposit first?
      • Why didn't I see the asset balance change after I deposit?
      • Why did I receive an email from Unipass?
      • What is Effective Leverage?
    • πŸ‘©β€πŸ”¬Help Center
    • πŸ“Release Log
    • πŸ‘¨β€πŸ«MUFEX Affiliate Program
    • πŸ’»Social Media & Communities
    • πŸ’ΌBusiness Cooperation
    • πŸ“±Install MUFEX through the App Store
      • How to get an Apple ID in the US
      • How to use Taobao Purchase a non-mainland Apple ID
      • How to install MUFEX iOS TestFlight
    • πŸ™‹β€β™‚οΈEarly Ambassador Program
Powered by GitBook
On this page
  1. What makes MUFEX secure?
  2. MUFEX Security White Paper

Application Security

a) Secure Development Process

i) MUFEX adheres to industry-leading practices in secure software development lifecycle (SDL) to effectively manage and enhance application security. These practices encompass a comprehensive range of measures, including employee security awareness training, adherence to code security baselines, rigorous product security reviews, thorough threat modeling, code auditing, component scanning, robust security testing, and a responsive online incident emergency response system. MUFEX has established a tailored set of SDL processes designed to swiftly identify and mitigate threats, ensuring the avoidance of security vulnerabilities in production systems and minimizing financial risks for both exchanges and users."

ii)To ensure the production system's robust security, MUFEX implements the Bug Bounty mode, a rewarding method that encourages the discovery and reporting of unknown vulnerabilities. By incentivizing security researchers to uncover and disclose potential vulnerabilities, MUFEX aims to continuously reduce the presence of security vulnerabilities on the production system.

b) User Account Security

i) Safeguarding user account security is MUFEX's top priority. The company has assembled a team of experienced developers and security personnel. Efforts have been made to prevent malicious registrations, protect against user login credential theft, implement measures such as single device login, two-factor authentication, anti-replay attacks, and prevention of malicious email attacks. MUFEX has achieved a leading industry level in ensuring user account security.

ii) Through an offline account risk control system, suspicious activities and patterns are identified to enhance user account security.

c) Vulnerability and Security Incident Management

i) MUFEX has seamlessly integrated and optimized three prominent vulnerability classification models: GB/T 30279-2020, CVSS, and DREAD. In line with this integration, MUFEX has established a comprehensive framework encompassing vulnerability and incident classification standards, as well as defined time limits for vulnerability remediation and incident response. Security personnel utilize a unified database to track and resolve security vulnerabilities and incidents effectively. To prevent the recurrence of similar vulnerabilities or incidents, MUFEX conducts post-incident reviews and provides information security education, ensuring the efficient allocation of resources and mitigating escalating manpower costs."

PreviousServer SecurityNextSmart Contract Security

Last updated 1 year ago

πŸ“‘