Technical Glossary

Key terms and concepts for understanding ZeroCopy's hardware-isolated signing infrastructure.

ArchitectureCryptographyDeFiPerformanceProductRiskSecurityTrading

Attestation

Security

Cryptographic proof that specific code is running inside a hardware-isolated enclave. ZeroCopy uses AWS Nitro Attestation to prove the exact binary running in production.

Autonomous Trading

Trading

Algorithmic trading systems that execute trades without human intervention. Requires deterministic signing infrastructure to prevent agent errors from becoming legal liability.

Circuit Breaker

Risk

Hardware-enforced risk limit that physically prevents transactions exceeding pre-defined thresholds. Unlike software controls, cannot be bypassed by operators or attackers.

Enclave

Security

Hardware-isolated execution environment (AWS Nitro Enclave) where private keys exist. No root access, no SSH, no debugging interfaces. Memory is encrypted and inaccessible to the host.

Jitter Tax

Performance

Hidden cost of latency variance in high-frequency trading. Even with low average latency, unpredictable spikes cause missed opportunities and slippage. ZeroCopy eliminates jitter with deterministic 42µs signing.

MEV (Maximal Extractable Value)

DeFi

Profit extracted by reordering, inserting, or censoring transactions in a blockchain block. ZeroCopy integrates with Flashbots to protect against MEV attacks.

MPC (Multi-Party Computation)

Cryptography

Cryptographic technique where multiple parties jointly compute a signature without any single party holding the full private key. Slower than hardware isolation (300ms+ vs 42µs).

PCR0 (Platform Configuration Register 0)

Security

Hash of the enclave image. Used to verify that the exact expected code is running. ZeroCopy publishes PCR0 measurements for independent verification.

Policy Engine

Risk

Pre-execution risk controls enforced in hardware. Validates transactions against limits (volume, counterparty, time-of-day) before signing. Prevents fat-finger errors and unauthorized trades.

Sentinel Core

Product

ZeroCopy's core signing infrastructure. AWS Nitro Enclave with 42µs latency, hardware isolation, and cryptographic attestation.

Sidecar

Product

Protocol-specific execution extension that runs alongside Sentinel Core. Examples: Solana Sidecar (JIT signing), Ethereum Sidecar (Flashbots integration).

Sovereign Infrastructure

Architecture

Self-hosted infrastructure where you control the deployment, keys, and policies. ZeroCopy runs in your AWS VPC, not a shared multi-tenant cloud.

Vsock

Performance

Virtual socket protocol for communication between AWS Nitro Enclaves and parent EC2 instances. Faster than TCP/IP (42µs vs 15ms).

Zero-Knowledge Architecture

Security

System design where operators cannot access sensitive data (private keys) even with full system access. ZeroCopy employees cannot extract keys, even under subpoena.

Missing a term? Contact us at docs@zerocopy.systems to suggest additions.

← Back to Docs

Technical Glossary

Key terms and concepts for understanding ZeroCopy's hardware-isolated signing infrastructure.

ArchitectureCryptographyDeFiPerformanceProductRiskSecurityTrading

Attestation

Security

Cryptographic proof that specific code is running inside a hardware-isolated enclave. ZeroCopy uses AWS Nitro Attestation to prove the exact binary running in production.

Autonomous Trading

Trading

Algorithmic trading systems that execute trades without human intervention. Requires deterministic signing infrastructure to prevent agent errors from becoming legal liability.

Circuit Breaker

Risk

Hardware-enforced risk limit that physically prevents transactions exceeding pre-defined thresholds. Unlike software controls, cannot be bypassed by operators or attackers.

Enclave

Security

Hardware-isolated execution environment (AWS Nitro Enclave) where private keys exist. No root access, no SSH, no debugging interfaces. Memory is encrypted and inaccessible to the host.

Jitter Tax

Performance

MEV (Maximal Extractable Value)

DeFi

Profit extracted by reordering, inserting, or censoring transactions in a blockchain block. ZeroCopy integrates with Flashbots to protect against MEV attacks.

MPC (Multi-Party Computation)

Cryptography

Cryptographic technique where multiple parties jointly compute a signature without any single party holding the full private key. Slower than hardware isolation (300ms+ vs 42µs).

PCR0 (Platform Configuration Register 0)

Security

Hash of the enclave image. Used to verify that the exact expected code is running. ZeroCopy publishes PCR0 measurements for independent verification.

Policy Engine

Risk

Pre-execution risk controls enforced in hardware. Validates transactions against limits (volume, counterparty, time-of-day) before signing. Prevents fat-finger errors and unauthorized trades.

Sentinel Core

Product

ZeroCopy's core signing infrastructure. AWS Nitro Enclave with 42µs latency, hardware isolation, and cryptographic attestation.

Sidecar

Product

Protocol-specific execution extension that runs alongside Sentinel Core. Examples: Solana Sidecar (JIT signing), Ethereum Sidecar (Flashbots integration).

Sovereign Infrastructure

Architecture

Self-hosted infrastructure where you control the deployment, keys, and policies. ZeroCopy runs in your AWS VPC, not a shared multi-tenant cloud.

Vsock

Performance

Virtual socket protocol for communication between AWS Nitro Enclaves and parent EC2 instances. Faster than TCP/IP (42µs vs 15ms).

Zero-Knowledge Architecture

Security

System design where operators cannot access sensitive data (private keys) even with full system access. ZeroCopy employees cannot extract keys, even under subpoena.

Missing a term? Contact us at docs@zerocopy.systems to suggest additions.