# Platform Architecture The Stobox 4 platform is built as a layered system that merges Web2 usability with Web3 programmability, decentralized identity, institutional-grade wallet infrastructure, and regulatory compliance automation. The architecture ensures that both issuers and investors experience a seamless, secure, and compliant digital-asset environment from onboarding to full lifecycle management. *** ### **High-Level Architecture Overview** Stobox 4 consists of six interconnected layers: 1. **Application Layer** 2. **Identity & Compliance Layer** 3. **Wallet Layer (MPC for individuals, Vaults for businesses)** 4. **Smart Contract Layer (STV3 Protocol)** 5. **Data & Audit Layer** 6. **Integrations Layer** Together, these layers enable compliant tokenized securities, automated operations, and secure asset management. *** ### **Application Layer (User Interface and Interactions)** The Application Layer contains all user-facing Web2 modules that allow secure and intuitive interaction with the blockchain and compliance infrastructure. #### **Issuer Dashboard** Used by businesses to manage: * Tokenization projects * Legal documentation * Compliance configurations * STV3 token parameters * Investor onboarding * STO launch and monitoring * Distributions and lifecycle events #### **Investor Portal** Designed for individuals to: * Register and complete KYC * Receive their MPC wallet * Browse eligible offerings * Subscribe to STOs * Manage token holdings * Participate in governance and corporate actions #### **Administrative Consoles** Used internally by issuers and Stobox teams for: * Compliance oversight * Case management * Transaction monitoring * Support operations The Application Layer abstracts blockchain complexity, making regulated digital assets accessible through familiar interfaces. *** ### **Identity & Compliance Layer (Stobox DID + Rule Engine)** The Identity and Compliance Layer forms the regulatory backbone of Stobox 4. #### **Stobox DID (Decentralized Identity)** Every verified individual or business receives a DID containing: * Identity attributes * Jurisdiction * Investor classification * Sanctions risk flags * Compliance statuses For individuals: DID links directly to their **MPC wallet**.\ For businesses: DID links to their **Operational Vault**. #### **Compliance Rule Engine** Compliance is checked before every sensitive action, including: * Investing * Receiving distributions * Transferring assets * Participating in corporate actions * Redeeming or converting tokens The rule engine evaluates: * Jurisdiction * Investor category * KYC/KYB completeness * AML/KYT indicators * Offering-specific restrictions * Token-specific rules Only compliant users can proceed. #### **Compliance Enforcement** Compliance is enforced both: * Off-chain (Application Layer) * On-chain (STV3 smart contracts) If any rule fails, the transaction is rejected automatically. *** ### **Wallet Layer** Stobox 4 uses a dual-wallet architecture: #### **MPC Wallets for Individuals** Issued to natural persons only.\ Used to hold: * Stablecoins (USDC, etc.) * Native tokens for gas * Tokenized assets and security tokens (STV3) Key characteristics: * No seed phrases * Private keys never exist in full * Multi-party cryptographic signing * Institutional-grade security * Enables safe self-custody with compliance enforcement #### **Operational Vaults (Embedded Wallets) for Businesses** Used only by issuers and corporate entities.\ Vaults: * Hold operational stablecoins for STO settlement * Process distributions, redemptions, refunds * Fund gas and transactional requirements * Are not designed to store security tokens * Execute payments subject to DID-based compliance Vaults operate under Fireblocks embedded wallet infrastructure. #### **Why Two Wallet Types?** * **Individuals need self-custody** of tokenized assets → MPC wallets * **Businesses need operational payment systems** → Vaults This separation reflects legal, regulatory, and operational distinctions. *** ### **Smart Contract Layer (STV3 Protocol)** The STV3 Protocol is the token standard used for regulated digital securities on Stobox 4. #### **Core Capabilities** * Identity-bound ownership via DID * On-chain validation of compliance rules * Role-based permissions for issuers * Lock-ups, vesting, and transfer restrictions * Minting, burning, redeeming, freezing * Metadata linking legal and economic rights * Treasury mechanics for issuers * Automated corporate actions #### **How STV3 Interacts with Wallets** * Tokens are held directly in investor **MPC wallets** * Transfers require both wallet authorization and STV3 compliance approval * Issuers’ Vaults do not store tokens; they hold only stablecoins #### **On-Chain Compliance Logic** Before a token action occurs, STV3 validates: * Sender DID * Receiver DID * Token rules * Investor eligibility * Jurisdiction restrictions * Lock-ups and vesting conditions If any rule fails, the smart contract blocks the action. *** ### **Data, Logs, Reporting & Audit Layer** This layer ensures operational transparency and regulatory accountability. #### **Data Logging** Logs are recorded for: * Investments * Token transfers * Wallet transactions * Compliance checks * Token issuance and minting events * Distributions * Corporate actions #### **Report Generation** Issuers can export: * Cap tables * Subscription histories * Distribution reports * Investor profiles * Transaction logs * Compliance validations #### **Audit Trail** Designed for institutions, auditors, and regulators: * Immutable blockchain data * Off-chain logs with timestamps * Traceability of wallet activity * Verification of identity-based controls This provides a complete, verifiable operational footprint. *** ### **Integrations Layer** Stobox 4 integrates with essential third-party systems to enable tokenized finance. #### **Blockchain Networks** Networks chosen for: * Security * Predictable fees * Ecosystem maturity * Institutional adoption * Compatibility with STV3 #### **Identity & Compliance Providers** Integrated services include: * KYC * KYB * Sanctions screening * AML/KYT * Risk scoring #### **Custody Infrastructure** * MPC wallet provider for individuals * Fireblocks embedded wallets for businesses #### **Payment Systems** May include: * Fiat-to-stablecoin conversion * Bank transfer integrations * External payment processors * Merchant services #### **Oracles & Data Feeds** Used for: * Pricing information * Proof of reserves * External data validation * Future interoperability *** {% embed url="" %}