Security Threat Model
This document outlines the security threats and mitigations for the Raiku Blockspace Stock Market platform. It covers attack vectors specific to auction systems, slot marketplaces, and blockchain transaction handling.
Threat Categories
1. JIT Transaction Abuse
Threat: Sealed-bid manipulation in Just-in-Time auctions
Mitigations:
- Sealed-bid encryption until auction close
- Time-locked bid commitments
- Minimum price validation against current priority fees
- Rate limiting on bid submissions
2. AOT Auction Manipulation
Threat: English-style auction manipulation for Ahead-of-Time slots
Mitigations:
- Transparent bid history with timestamps
- Minimum bid increment requirements
- Anti-sniping extensions (auction extends if bid in final seconds)
- Slot reservation limits per address
3. Wallet Signature Safety
Threat: Unauthorized or blind transaction signing
Mitigations:
- Human-readable transaction previews
- Clear fee breakdown display
- Slot number and timing verification
- Transaction hash display before signing
4. RPC Desync and Replay Attacks
Threat: Attacks on RPC connection integrity
Mitigations:
- Multiple RPC endpoint validation
- Slot sequence validation
- Timestamp verification
- WebSocket health monitoring
- Automatic failover to backup RPC
For the complete threat model, see docs/security/threat-model.md