# Security

## Security at Kite&#x20;

At Kite, security is not an afterthought, it’s built into the architecture. We implement a shift-left security mindset, applying best practices from design to production. Through layered defenses, independent audits, and an internal Security Officer overseeing continuous DevSecOps monitoring, we ensure that every component of the Kite AI Layer-1 and its services meets global security standards. Our Security Principles:<br>

* First-class citizen: Security, reliability, and safety are treated as core UX. Features do not ship unless they meet security acceptance criteria.
* Shift-Left: Threat modeling, secure design reviews, and automated checks start at the ideation and PRD (Product requirement Design) stage, not after code freeze.
* Defense-in-Depth: Multiple independent layers protect keys, code, infrastructure, and funds; single points of failure are designed out.
* Least Privilege & Zero Trust: Minimize blast radius through scoped roles, short-lived credentials, strong auth, and continuous verification.
* Transparency & Verifiability: On-chain proofs, public audit artifacts, and immutable changelogs where possible.
* Independent Assurance: We engage top security firms ( such as Halborn) for smart-contract and protocol audits, and commission independent penetration tests by  reputed security partner.
* Verified Authorization: By combining multi-signature (multi-sig) wallet technology with advanced access controls, Kite minimizes single points of failure and ensures that critical operations always require verified authorization.
* 24/7 monitoring for both Web2.0 and Web3.0 vulnerabilities and incidents.

**Note:** We will publish audit reports and pen-test summaries (with sanitized details) on demand.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.gokite.ai/kite-chain/6-reference.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.