Technical FAQ & Research Data

The network utilizes the Tor (The Onion Router) protocol, which encapsulates traffic in multiple layers of encryption. Data is routed through a randomized series of volunteer relays. Each relay decrypts only enough data to know the next destination, ensuring that no single point in the network knows both the origin and the destination of the data.

Mirror nodes may go offline due to scheduled maintenance, Distributed Denial of Service (DDoS) mitigation protocols, or consensus updates. The decentralized nature of the infrastructure requires periodic rotation of entry nodes to maintain network integrity. Always verify current mirrors against the signed PGP message.

Access requires a Tor-enabled browser configured to resolve .onion top-level domains. Standard browsers (Chrome, Firefox, Safari) cannot resolve these addresses without specific routing configurations such as Tor2Web, which is not recommended for privacy due to potential traffic logging at the exit node.

Pretty Good Privacy (PGP) is used to verify the authenticity of the server and the user. The server signs a unique message with its private key, which users can verify using the public key. Conversely, users decrypt a message encrypted with their public key to prove account ownership without transmitting passwords.

The standard implementation involves PGP-based 2FA. Upon login attempt, the server generates a random challenge string, encrypts it with the user's stored public key, and presents the cyphertext. The user must decrypt this using their private key and input the resulting plaintext to gain access.

Phishing is mitigated through the strict validation of PGP signatures and the knowledge of the primary onion address. Users are advised to bookmark verified mirrors and disable JavaScript, which can be used to inject malicious redirects or spoof interface elements.

The escrow system holds funds in a neutral multi-signature wallet until predetermined conditions are met. Funds are released only when the receiving party confirms the integrity of the exchange, or when a finalized timer expires. In disputes, a moderator key is used to adjudicate based on evidence provided.

Monero utilizes ring signatures, ring confidential transactions (RingCT), and stealth addresses to obfuscate the sender, receiver, and amount of every transaction. This provides a fungible and private settlement layer that Bitcoin's transparent ledger cannot offer, preventing blockchain analysis traceability.

A vendor bond is a security deposit held by the market to discourage ephemeral or fraudulent accounts. This bond creates a financial barrier to entry, ensuring that market participants have a vested interest in maintaining reputation and operational longevity.

Visual and logic-based Captchas introduce a computational cost to connection requests. This prevents automated botnets from flooding the application layer with requests. If captchas are failing, users should ensure JavaScript is disabled (if the captcha is static) or verify their clock synchronization.

Account recovery relies exclusively on a mnemonic seed phrase generated at registration. Because no email addresses or personal identification are stored on the database, this cryptographic seed is the only method to restore access to a lost account. Loss of the seed results in permanent loss of access.