Security

Security is foundational to VexNode's architecture. We built our platform with the assumption that every layer — from network transport to GPU memory — must be isolated, encrypted, and auditable. Enterprise workloads demand nothing less.

Last updated: March 2026

Infrastructure Security

All network traffic between orchestration nodes and GPU providers is routed through WireGuard encrypted tunnels
Every workload runs in an isolated Docker container provisioned by the NVIDIA Container Toolkit, ensuring hardware-level GPU isolation
Zero shared GPU memory between tenants — each job receives dedicated VRAM with no cross-contamination
Containers are destroyed immediately upon job completion, leaving no residual data on provider hardware

Data Protection

TLS 1.3 encryption for all data in transit between your systems and VexNode
AES-256 encryption for all data at rest, including account records and billing information
No persistent storage of customer models, datasets, or job outputs beyond active compute sessions
Customers can configure optional encrypted persistent volumes for workloads requiring stateful storage

Access Control

API key authentication with scoped permissions for programmatic access
Role-based team permissions — assign Owner, Admin, and Member roles with granular access controls
Comprehensive audit logging of all account actions, API calls, and infrastructure events
Session management with configurable timeout policies and forced logout capabilities

Compliance

SOC 2 Type II certification is on our active roadmap, with controls already being implemented
GDPR-aware data handling practices, including data minimization and right-to-deletion support
Regular third-party penetration testing and vulnerability assessments
Documented incident response procedures with defined escalation paths and notification timelines

Responsible Disclosure

We value the work of security researchers who help keep VexNode and our users safe. If you discover a vulnerability, please report it responsibly.

Send your findings to security@vexnode.ai with a detailed description of the issue, steps to reproduce, and any supporting evidence. We will acknowledge receipt within 24 hours and aim to provide an initial assessment within 5 business days.

We ask that you do not publicly disclose the vulnerability until we have had a reasonable opportunity to address it. We do not pursue legal action against researchers acting in good faith.