Auth 2025
Security
Private + PGP • Stealth auth
PGP-ONLY AUTHENTICATION
NO PASSWORDS EVER
We do not store, hash, or even know your credentials. Authentication is 100% cryptographic proof via your private key.
CRYPTOGRAPHIC CHALLENGE
Every login = unique encrypted challenge. Only your private key can decrypt and sign the response.
PHISHING-PROOF BY DESIGN
Fake sites cannot replicate the challenge-response. You will instantly know if you're on a mirror scam.
ZERO-KNOWLEDGE ARCHITECTURE
Even if the entire server is seized tomorrow — zero credentials, zero passwords, zero 2FA secrets are stored.
MILITARY-GRADE DEFENSE LAYERS
MANDATORY 2FA
Every account requires PGP + TOTP. No exceptions. No "disable 2FA" button exists.
47+ ROTATING MIRRORS
Auto-failover in <3 seconds. No single point of failure. No DDoS can take us down.
END-TO-END ENCRYPTION
All messages, disputes, and orders encrypted client-side before hitting our servers.
SESSION EXPIRY & ROTATION
Auto-logout after 15 minutes. Session tokens rotate every 60 seconds.
HOW TO SET UP PGP (5 MINUTES)
1. INSTALL GPG
choco install gnupg
# macOS
brew install gnupg
# Linux
sudo apt install gnupg
2. GENERATE 4096-BIT KEY
→ RSA 4096 bit
→ No expiration
→ Strong passphrase
3. EXPORT PUBLIC KEY
→ Copy everything from -----BEGIN PGP PUBLIC KEY BLOCK-----
→ Paste during registration
4. LOGIN WITH PRIVATE KEY
Every login you decrypt a challenge with your private key. No password. No recovery phrase. Pure crypto.
SECURITY BEST PRACTICES
OFFLINE KEY STORAGE
Keep your private key on an air-gapped USB or hardware device. Never leave it on your daily machine.
USE TOR + VPN
Double-hop protection. Tor → VPN → Torzon. No logs. No leaks.
VERIFY MIRROR SIGNATURE
Every official mirror is signed with our PGP key. Verify before use.
ENABLE LOGIN ALERTS
Get PGP-encrypted alerts on every login attempt. Impossible to miss a breach.