Quality Attributes
Quality attributes treated as first-class architectural requirements in DALP, with explicit tradeoffs and measurable commitments for security, reliability, performance, and regulatory compliance.
Purpose
Documents the quality attributes that DALP treats as first-class architectural requirements, with explicit tradeoffs and measurable targets.
- Doc type: Reference
- What you'll find here:
- Security posture and trust boundaries
- Reliability model and failure recovery
- Performance characteristics and bottlenecks
- Compliance alignment with regulatory frameworks
- Related:
- Security — detailed security architecture
- Operability — observability and failure modes
- Principles & Non-Goals — design drivers
Security
| Attribute | Commitment |
|---|---|
| Authentication | Multi-factor: session + wallet PIN/TOTP for blockchain writes |
| Authorization | 26 roles across 4 layers (platform, system, per-asset, module) |
| On-chain enforcement | ERC-3643 compliance modules validate every token transfer |
| Key protection | MPC custody (DFNS, Fireblocks) or HSM for signing keys |
| Audit trail | Every state change logged with actor, timestamp, and correlation |
Trust boundaries: platform boundary (authentication), execution boundary (authorization), chain boundary (on-chain compliance + custody policies). See Security.
Reliability
| Attribute | Commitment |
|---|---|
| Workflow durability | Restate journals every step; automatic retry on failure |
| Transaction delivery | Nonce management with queue-based ordering; no lost transactions |
| Data consistency | PostgreSQL with Drizzle ORM; migrations generated, never hand-edited |
| Indexer recovery | Idempotent event processing; checkpoint-based resume after crashes |
| Blockchain failover | Chain Gateway load-balances across multiple RPC endpoints |
Failure modes and degradation behavior documented in Failure Modes.
Performance
| Component | Characteristic | Bottleneck |
|---|---|---|
| Token transfers | Bounded by block time + compliance module gas cost | Number of compliance modules per token |
| Indexer sync | ~2000 blocks per batch, converging discovery loop | RPC rate limits, database write throughput |
| API response | Sub-second for cached queries | Database query complexity for aggregate views |
| Asset deployment | Multi-transaction workflow (5-15 TXs) | Block confirmation time × transaction count |
Compliance
| Framework | DALP support |
|---|---|
| ERC-3643 | Full implementation via SMART Protocol |
| MiCA (EU) | Country allow-list + supply cap modules |
| Regulation D (US) | Accredited investor verification + investor count + holding period |
| KYC/AML | OnchainID claim-based verification via trusted issuers |
| SOC 2 / PCI DSS | Key Guardian supports HSM storage tiers |
See Compliance Modules for the full module catalog.
See also
- Security for defense-in-depth details
- Operability for observability and failure modes
- Compliance Modules for regulatory module catalog
Principles & Non-Goals
Design principles that guide DALP's architecture decisions and explicit non-goals that define what the platform deliberately does not attempt.
Deployment Topology
Architecture-level view of DALP deployment topology covering environments, runtime zones, network boundaries, and scaling constraints. Links to self-hosting guides for installation procedures.