Platform Architecture
The Stobox 4 platform is built as a layered system that merges Web2 usability with Web3 programmability, decentralized identity, institutional-grade wallet infrastructure, and regulatory compliance automation.
The architecture ensures that both issuers and investors experience a seamless, secure, and compliant digital-asset environment from onboarding to full lifecycle management.
High-Level Architecture Overview
Stobox 4 consists of six interconnected layers:
Application Layer
Identity & Compliance Layer
Wallet Layer (MPC for individuals, Vaults for businesses)
Smart Contract Layer (STV3 Protocol)
Data & Audit Layer
Integrations Layer
Together, these layers enable compliant tokenized securities, automated operations, and secure asset management.
Application Layer (User Interface and Interactions)
The Application Layer contains all user-facing Web2 modules that allow secure and intuitive interaction with the blockchain and compliance infrastructure.
Issuer Dashboard
Used by businesses to manage:
Tokenization projects
Legal documentation
Compliance configurations
STV3 token parameters
Investor onboarding
STO launch and monitoring
Distributions and lifecycle events
Investor Portal
Designed for individuals to:
Register and complete KYC
Receive their MPC wallet
Browse eligible offerings
Subscribe to STOs
Manage token holdings
Participate in governance and corporate actions
Administrative Consoles
Used internally by issuers and Stobox teams for:
Compliance oversight
Case management
Transaction monitoring
Support operations
The Application Layer abstracts blockchain complexity, making regulated digital assets accessible through familiar interfaces.
Identity & Compliance Layer (Stobox DID + Rule Engine)
The Identity and Compliance Layer forms the regulatory backbone of Stobox 4.
Stobox DID (Decentralized Identity)
Every verified individual or business receives a DID containing:
Identity attributes
Jurisdiction
Investor classification
Sanctions risk flags
Compliance statuses
For individuals: DID links directly to their MPC wallet. For businesses: DID links to their Operational Vault.
Compliance Rule Engine
Compliance is checked before every sensitive action, including:
Investing
Receiving distributions
Transferring assets
Participating in corporate actions
Redeeming or converting tokens
The rule engine evaluates:
Jurisdiction
Investor category
KYC/KYB completeness
AML/KYT indicators
Offering-specific restrictions
Token-specific rules
Only compliant users can proceed.
Compliance Enforcement
Compliance is enforced both:
Off-chain (Application Layer)
On-chain (STV3 smart contracts)
If any rule fails, the transaction is rejected automatically.
Wallet Layer
Stobox 4 uses a dual-wallet architecture:
MPC Wallets for Individuals
Issued to natural persons only. Used to hold:
Stablecoins (USDC, etc.)
Native tokens for gas
Tokenized assets and security tokens (STV3)
Key characteristics:
No seed phrases
Private keys never exist in full
Multi-party cryptographic signing
Institutional-grade security
Enables safe self-custody with compliance enforcement
Operational Vaults (Embedded Wallets) for Businesses
Used only by issuers and corporate entities. Vaults:
Hold operational stablecoins for STO settlement
Process distributions, redemptions, refunds
Fund gas and transactional requirements
Are not designed to store security tokens
Execute payments subject to DID-based compliance
Vaults operate under Fireblocks embedded wallet infrastructure.
Why Two Wallet Types?
Individuals need self-custody of tokenized assets → MPC wallets
Businesses need operational payment systems → Vaults
This separation reflects legal, regulatory, and operational distinctions.
Smart Contract Layer (STV3 Protocol)
The STV3 Protocol is the token standard used for regulated digital securities on Stobox 4.
Core Capabilities
Identity-bound ownership via DID
On-chain validation of compliance rules
Role-based permissions for issuers
Lock-ups, vesting, and transfer restrictions
Minting, burning, redeeming, freezing
Metadata linking legal and economic rights
Treasury mechanics for issuers
Automated corporate actions
How STV3 Interacts with Wallets
Tokens are held directly in investor MPC wallets
Transfers require both wallet authorization and STV3 compliance approval
Issuers’ Vaults do not store tokens; they hold only stablecoins
On-Chain Compliance Logic
Before a token action occurs, STV3 validates:
Sender DID
Receiver DID
Token rules
Investor eligibility
Jurisdiction restrictions
Lock-ups and vesting conditions
If any rule fails, the smart contract blocks the action.
Data, Logs, Reporting & Audit Layer
This layer ensures operational transparency and regulatory accountability.
Data Logging
Logs are recorded for:
Investments
Token transfers
Wallet transactions
Compliance checks
Token issuance and minting events
Distributions
Corporate actions
Report Generation
Issuers can export:
Cap tables
Subscription histories
Distribution reports
Investor profiles
Transaction logs
Compliance validations
Audit Trail
Designed for institutions, auditors, and regulators:
Immutable blockchain data
Off-chain logs with timestamps
Traceability of wallet activity
Verification of identity-based controls
This provides a complete, verifiable operational footprint.
Integrations Layer
Stobox 4 integrates with essential third-party systems to enable tokenized finance.
Blockchain Networks
Networks chosen for:
Security
Predictable fees
Ecosystem maturity
Institutional adoption
Compatibility with STV3
Identity & Compliance Providers
Integrated services include:
KYC
KYB
Sanctions screening
AML/KYT
Risk scoring
Custody Infrastructure
MPC wallet provider for individuals
Fireblocks embedded wallets for businesses
Payment Systems
May include:
Fiat-to-stablecoin conversion
Bank transfer integrations
External payment processors
Merchant services
Oracles & Data Feeds
Used for:
Pricing information
Proof of reserves
External data validation
Future interoperability
Last updated
Was this helpful?