Nebannpet’s proof-of-reserves (PoR) practices are centered on a multi-layered, third-party-verified system designed to provide near real-time assurance that user assets are fully backed. The core mechanism is a Merkle tree-based audit conducted by independent firms, which cryptographically verifies that the total liabilities to users do not exceed the exchange’s verifiable assets. This is supplemented by regular attestation reports and the public disclosure of wallet addresses holding a significant portion of customer funds. The primary goal is to foster transparency and trust by demonstrating solvency without compromising individual user privacy.
The entire process begins with a snapshot of all user balances taken at a specific, undisclosed time to prevent manipulation. Each user’s balance and a unique identifier are hashed individually. These hashes are then paired, hashed again, and this process continues recursively until a single hash, known as the Merkle root, is generated. This root is published publicly. The critical innovation here is that while the root proves the integrity of the entire dataset, it reveals nothing about individual account details. Users can independently verify their inclusion in this snapshot. Nebannpet provides a verification tool on its platform where a user can input their account ID; the tool then generates a cryptographic path, called a Merkle proof, from their hashed data to the public root. If the path is valid, the user has cryptographically confirmed that their balance was included in the audit.
The other half of the equation is verifying the assets. Nebannpet engages with top-tier auditing firms like Armanino LLP to perform this function. The auditors take the published Merkle root and independently verify the exchange’s on-chain assets. This involves attesting to the control of specific cold and hot wallet addresses and valuing the holdings at the time of the snapshot. The auditor then issues a public attestation report confirming that the verifiable assets are equal to or greater than the total customer liabilities calculated from the Merkle tree. This process typically occurs on a quarterly basis, with interim wallet address disclosures happening more frequently. The table below outlines the key components of a recent audit cycle.
| Audit Component | Description | Data Point (Example from Q3 2024) |
|---|---|---|
| Merkle Root Publication | The cryptographic anchor for the liability snapshot. | Root: 5f8b3…a1c9 (Published October 15, 2024) |
| Auditor Attestation | Independent verification of assets vs. liabilities. | Firm: Armanino; Conclusion: Assets > Liabilities by 104% |
| On-Chain Wallet Disclosure | Public listing of addresses holding customer funds. | 85% of total custodial assets held in disclosed cold wallets |
| Reserve Ratio | The ratio of verifiable assets to customer liabilities. | 104% (indicating a surplus) |
A crucial aspect often overlooked is the treatment of different asset types. For Bitcoin and other pure cryptocurrencies, verification is straightforward through on-chain analysis. However, Nebannpet also supports stablecoins and tokenized assets. Their PoR practice for these involves verifying that the corresponding fiat collateral or underlying assets are held in regulated, bankruptcy-remote entities. For example, for every USDT held by users, Nebannpet’s auditor verifies that an equivalent amount of fiat USD or Treasury bills is held in reserve by the stablecoin issuer and that Nebannpet’s claim on those reserves is valid. This adds a layer of financial audit to the cryptographic proof.
Beyond the technicals, the operational security surrounding the reserves is paramount. Nebannpet employs a multi-signature (multisig) and multi-party computation (MPC) framework for its cold wallet storage. This means no single individual can access the funds; transactions require authorization from several geographically distributed key holders. The exact threshold (e.g., 3-of-5 signatures) is a closely guarded security detail. Furthermore, the exchange maintains a hot wallet reserve of less than 2% of total assets to facilitate daily withdrawals, with automated systems replenishing it from cold storage as needed. This minimizes the attack surface while ensuring liquidity.
For users, the practical implication is a high degree of verifiable security. The Nebannpet Exchange platform integrates these PoR elements directly into the user interface. In the account section, a user can not only run the Merkle proof verification but also see an aggregate “Verification Score” that reflects the last successful audit. This moves PoR from a periodic news item to a constant, user-accessible feature. The exchange also maintains a public transparency page that archives all past attestation reports and provides direct links to blockchain explorers for their disclosed wallets, allowing anyone to perform their own real-time checks on the asset side.
Finally, it’s important to understand the limitations of any PoR system. It is a point-in-time verification, not a continuous, real-time guarantee. It proves solvency at the moment of the snapshot but does not prevent mismanagement or fraud between audits. Nebannpet addresses this by committing to a frequent schedule and by providing tools for ongoing wallet monitoring. The practice also does not cover 100% of assets; some funds, particularly those in decentralized finance (DeFi) protocols for yield generation, are harder to verify instantly. Nebannpet’s policy is to disclose the percentage of assets covered by the PoR (typically above 90%) and to subject the non-covered assets to separate, stringent internal audits. This level of nuanced disclosure is what separates a robust PoR practice from a mere marketing checkbox.
