Glossary

Key terms and concepts for understanding ZeroCopy's hardware-isolated signing infrastructure.

ArchitectureCryptographyDeFiPerformanceProductRiskSecurityTrading

Attestation: Cryptographic proof that specific code is running inside a hardware-isolated enclave. ZeroCopy uses AWS Nitro Attestation to prove the exact binary running in production.
Autonomous Trading: Algorithmic trading systems that execute trades without human intervention. Requires deterministic signing infrastructure to prevent agent errors from becoming legal liability.
Circuit Breaker: Hardware-enforced risk limit that physically prevents transactions exceeding pre-defined thresholds. Unlike software controls, cannot be bypassed by operators or attackers.
Enclave: Hardware-isolated execution environment (AWS Nitro Enclave) where private keys exist. No root access, no SSH, no debugging interfaces. Memory is encrypted and inaccessible to the host.
Jitter Tax: Hidden cost of latency variance in high-frequency trading. Even with low average latency, unpredictable spikes cause missed opportunities and slippage. ZeroCopy eliminates jitter with deterministic 42µs signing.
MEV (Maximal Extractable Value): Profit extracted by reordering, inserting, or censoring transactions in a blockchain block. ZeroCopy's low-latency signing enables MEV-aware execution strategies.
MPC (Multi-Party Computation): Cryptographic technique where multiple parties jointly compute a signature without any single party holding the full private key. Slower than hardware isolation (75ms to 8s+ depending on provider, vs 42µs modeled for ZeroCopy).
PCR0 (Platform Configuration Register 0): Hash of the enclave image. Used to verify that the exact expected code is running. ZeroCopy publishes PCR0 measurements for independent verification.
Policy Engine: Pre-execution risk controls enforced in hardware. Validates transactions against limits (volume, counterparty, time-of-day) before signing. Prevents fat-finger errors and unauthorized trades.
Sentinel Core: ZeroCopy's core signing infrastructure. AWS Nitro Enclave with 42µs latency, hardware isolation, and cryptographic attestation.
Sidecar: Protocol-specific execution extension that runs alongside Sentinel Core. Examples: Solana Sidecar (JIT signing), Ethereum Sidecar (Flashbots integration).
Sovereign Infrastructure: Self-hosted infrastructure where you control the deployment, keys, and policies. ZeroCopy runs in your AWS VPC, not a shared multi-tenant cloud.
Vsock: Virtual socket protocol for communication between AWS Nitro Enclaves and parent EC2 instances. Sub-microsecond transport overhead, bypassing the network stack entirely.
Zero-Knowledge Architecture: System design where operators cannot access sensitive data (private keys) even with full system access. ZeroCopy employees cannot extract keys, even under subpoena.

Missing a term? [email protected]

Glossary

Key terms and concepts for understanding ZeroCopy's hardware-isolated signing infrastructure.

ArchitectureCryptographyDeFiPerformanceProductRiskSecurityTrading

Attestation: Cryptographic proof that specific code is running inside a hardware-isolated enclave. ZeroCopy uses AWS Nitro Attestation to prove the exact binary running in production.
Autonomous Trading: Algorithmic trading systems that execute trades without human intervention. Requires deterministic signing infrastructure to prevent agent errors from becoming legal liability.
Circuit Breaker: Hardware-enforced risk limit that physically prevents transactions exceeding pre-defined thresholds. Unlike software controls, cannot be bypassed by operators or attackers.
Enclave: Hardware-isolated execution environment (AWS Nitro Enclave) where private keys exist. No root access, no SSH, no debugging interfaces. Memory is encrypted and inaccessible to the host.
Jitter Tax: Hidden cost of latency variance in high-frequency trading. Even with low average latency, unpredictable spikes cause missed opportunities and slippage. ZeroCopy eliminates jitter with deterministic 42µs signing.
MEV (Maximal Extractable Value): Profit extracted by reordering, inserting, or censoring transactions in a blockchain block. ZeroCopy's low-latency signing enables MEV-aware execution strategies.
MPC (Multi-Party Computation): Cryptographic technique where multiple parties jointly compute a signature without any single party holding the full private key. Slower than hardware isolation (75ms to 8s+ depending on provider, vs 42µs modeled for ZeroCopy).
PCR0 (Platform Configuration Register 0): Hash of the enclave image. Used to verify that the exact expected code is running. ZeroCopy publishes PCR0 measurements for independent verification.
Policy Engine: Pre-execution risk controls enforced in hardware. Validates transactions against limits (volume, counterparty, time-of-day) before signing. Prevents fat-finger errors and unauthorized trades.
Sentinel Core: ZeroCopy's core signing infrastructure. AWS Nitro Enclave with 42µs latency, hardware isolation, and cryptographic attestation.
Sidecar: Protocol-specific execution extension that runs alongside Sentinel Core. Examples: Solana Sidecar (JIT signing), Ethereum Sidecar (Flashbots integration).
Sovereign Infrastructure: Self-hosted infrastructure where you control the deployment, keys, and policies. ZeroCopy runs in your AWS VPC, not a shared multi-tenant cloud.
Vsock: Virtual socket protocol for communication between AWS Nitro Enclaves and parent EC2 instances. Sub-microsecond transport overhead, bypassing the network stack entirely.
Zero-Knowledge Architecture: System design where operators cannot access sensitive data (private keys) even with full system access. ZeroCopy employees cannot extract keys, even under subpoena.

Missing a term? [email protected]