Architecture
Planbok is built on a decentralized network of MPC nodes that communicate to generate signatures without ever reconstructing the private key.
Distributed Key Generation (DKG)
Uses Feldman VSS to generate key shares across multiple nodes. No single entity, including Planbok, ever possesses the full private key.
TEE Enclaves
Key shares are stored and processed within hardware-isolated Trusted Execution Environments (AWS Nitro / Intel SGX), ensuring memory encryption at rest and in use.
Policy Engine
Every signature request passes through a rigorous policy check (Amount limits, Whitelists, Velocity controls) before nodes participate in the signing protocol.