> For the complete documentation index, see [llms.txt](https://docs.primestaking.xyz/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.primestaking.xyz/security/custody-and-key-management.md). # Custody & Key Management PrimeStaking uses a **permissionless, smart contract-based** validator custody model - eliminating human interaction from custody flows entirely. *** ## How It Works * **Smart contract-based execution** - validator keys and staked XDC are managed entirely by audited smart contracts, with no human interaction in custody flows. * **Permissionless** - anyone can verify the state of validators and staked assets on-chain. No centralized approval required. * **Trustless** - no single entity controls the keys. The protocol enforces custody rules through code, not operational trust. * **Institutional-grade transparency** - full operational transparency aligned with institutional security standards. *** ## Audit & Collaboration PrimeStaking's custody infrastructure is developed in collaboration with: * Nethermind — smart contract development and security review * XDC Core team — network-level validator integration The custody substrate (`PrimeStakedXDC_V3` vault + `PrimeStakedXDC_V3MigrationBridge`) was independently audited by **Nethermind Security** in audit **NM-0843, XDC Prime Stake** (final report **May 08, 2026**). All Critical, High, and Medium findings are Fixed; the three Acknowledged findings are operationally mitigated. [Read the full report (PDF)](https://github.com/PrimeNumbersLabs/primestaking-gitbook/blob/main/NM_0843_xdc_prime_stake_FINAL_updated_tests.pdf) or see the [Audits page](/security/audits-1.md) for the per-finding breakdown. *** ## What This Means for Users | Property | Detail | | ------------------------ | ------------------------------------------------- | | **Custody model** | Smart contract-based (no third-party custodian) | | **Key management** | Validator keys secured by on-chain contracts | | **Human interaction** | Eliminated from custody flows | | **Verifiability** | Fully transparent and auditable on the blockchain | | **User action required** | None - fully seamless | *** ## Impact on Users * Users retain **full ownership** of their assets at all times. * Smart contract-based custody eliminates reliance on any centralized custodian, strengthening the protocol's decentralization. * In V3, **withdrawal UX has improved**: redemptions settle instantly when the vault's liquid buffer permits, and otherwise enter a permissionless FIFO queue users can [self-claim](/products/xdc-liquid-staking/staking-guide/withdrawals-instant-vs-queued.md) (`claimQueuedAssets`). The upper bound for queue settlement is the XDC Network's `candidateWithdrawDelay` — approximately **35 days** under typical block times. * The psXDC v3 vault is **non-upgradeable**, so the contract that holds your XDC cannot be modified by anyone. Only the NFT staking vault is upgradeable, and only through multisig + delayed governance. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.primestaking.xyz/security/custody-and-key-management.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.