YubiHSM 2 — dual datacenter, primary + backup
ACTIVETwo physical Key Management System servers, one in each datacenter, both equipped with YubiHSM 2 hardware security modules. One primary, one hot backup. Validator signing keys never exist outside the HSM boundary. This architecture has been our standard since day one of operations and is documented publicly from 2019.
verifiedFounding setup, June 11, 2019→