Deploy key management infrastructure with ease
Dfns' KMS provides flexibility to meet regulatory and compliance needs with composable key deployments and open custody configurations, supporting all options.
- >10Mwallets created
- 0wallet hacked
- >$3Btransactions secured
- >$500Mmonthly transactions
Avoid design lock-ins with flexible key management
Security
Leverage MPC cryptography to eliminate single points of failure by using partial keys that refresh periodically across a network of data centers. Or bring your HSM.
Governance
Integrate Dfns at any level of your stack to maintain full control. Ideal for institutions that prioritize autonomy and want to eliminate dependency and third-party risks.
Compliance
Securing keys is vital for both regulated and self-hosted custody. Choose a wallet provider that can supports your growth and adapt to changing markets and regulations.
Discover a wide range of capabilities from Dfns
Flexible custodianship
Dfns offers custodial and non-custodial wallets, giving clients flexibility to meet regulatory needs.
Customizable wallets
Segregated wallets, unique user wallets, omnibus wallets to reduce fees, and more.
Composable deployment
Self-host your keys, policies, services and infrastructure without vendor reliance.
Extensive signing groups
Our MPC protocols enable multiple entities to share and manage partial keys for signing.
Adjustable threshold
Threshold signing with flexible quorums, aligning workflows with business logic.
Configurable recovery
Define disaster criteria and use a dedicated recovery layer to recover keys in our DRP.
Personalized experience
Set up wallet recovery with flexible 2FA: cross-device passkeys, codes, KYC’d keys, and more.
Compatible cryptography
Support for algorithms, curves, and derivations: ECDSA, EdDSA, STARK, Schnorr, BIP and SLIP.
Key export option
Access the "break-the-glass" feature to safely eject private keys and digital assets at all levels.
Composable deployments for adaptive risk management
Simplify and secure your key deployment with our advanced automations and APIs. Customize for a seamless and safe setup in any environment.
Managed (SaaS)
Use Dfns' key management service to benefit from a fully managed key storage, maintaining remote wallet control via passkey authentication. All key material is securely stored in T3+/T4 data centers.
Hybrid (Cloud)
Achieve top-tier security and flexibility with co-controlled wallets. Keep some keys on-premises while selecting where Dfns-hosted keys are deployed across America, Europe, Middle East, or Asia.
On-Premises
Expand your deployments with MPC keys and Dfns services in on-prem enclaves like Intel SGX, AWS Nitro, IBM OSO, Thales Luna HSM, and private clouds. Alternatively, bring your own keys in HSMs.
Advanced integrations
Simple integrations
Your IT and banking systems already accept digital assets
Customer-hosted deployments provide enterprise businesses with the flexibility to develop digital asset services tailored to their specific IT infrastructure and security needs. With Dfns, you gain full control over hosting all Multi-Party Computation (MPC) key shares, ensuring that your encryption keys are securely managed. Additionally, you can enhance security by encrypting access through a self-managed Hardware Security Module (HSM), offering a robust solution that integrates seamlessly with your existing systems and adheres to your organization's security policies.
Securing top banks and fintechs with advanced key management
Tamperproof HSM
Our HSM API lets organizations connect their devices to our node coordinator, enabling blockchain communication without changing key management practices.
Battle-tested MPC
MPC is ideal for decentralized key deployments and fault-resistant service availability. Dfns develops and uses industry leading protocols audited by top-tier security firms.
Real-time observability
Monitor code, transfers, and events across API history and microservice logs. Ensure wallet backend integrity by tracking attestations from Dfns- or self-hosted enclaves.
Root-level controls
Elevate root-level access control with enclaves and public key signing, allowing precise resource management for selected developers and employees.
Disaster recovery
Our DRP is a four-layer system that customizes key recovery by criticality and triggers, with optional integrations to backup providers like Station70, Circuit or Coincover.
Evolving digital regulations require composable architectures
Streamline your development with our wallet API/SDKs in just days. Enjoy fast, responsive technical support via live chat, with same-day responses and full implementation troubleshooting.
Protect against geopolitical risks
Regulations differ on key storage: some mix storage and custody, some require national storage, and others allow CLOUD Act-compliant data centers. With Dfns, deploy keys to secure facilities anywhere.
Connect with essential services
Dfns APIs connect with core banking systems (e.g., Temenos, Finastra, FIS, Sopra), top KYT solutions (e.g., Sardine, Chainalysis), and other essential tools for smooth financial operations.