Organization Account and Wallet
Last updated
Term Structure Institutional Docs
Last updated
The chart of organization account, wallet and user:
The organization account is the highest-level entity within TSI, representing an institution participating in the platform. An organization must first be created within the TSI system. This account acts as a container for wallets and users associated with that institution.
Wallets within TSI are used to hold and manage digital assets. The above chart shows two example wallets (Wallet A and Wallet B) associated with an organization. Key characteristics of wallets include:
Association with Organizations: Wallets are created and managed within the context of an organization account.
Asset Holding: Each wallet holds a variety of digital assets.
Unique Network-Token Addresses: Each network-token within a wallet has a unique address, ensuring proper tracking and management of assets across different blockchains. The network-token addresses are built automatically when a wallet is created.
Users are individuals who interact with the TSI platform on behalf of an organization. Users are either Traders or Liquidators, depending on the type of organization they belong to.
Trader:
Organization Type: Trader organizations can have multiple Traders created by the Organization Admin.
Invitation: When inviting a user to a Trader organization, the Organization Admin can only select the "Trader" role.
Trading Functionality: Traders can place both borrowing and lending orders within TSI.
MPC Key Share #2: Each Trader possesses a unique MPC key share (#2), used in conjunction with Fireblocks' key share (#1) to co-sign transactions.
Liquidator:
Organization Type: Liquidator organizations can have multiple Liquidators created by the Organization Admin.
Invitation: When inviting a user to a Liquidator organization, the Organization Admin can only select the "Liquidator" role.
Liquidation Functionality: Liquidators can execute liquidations of collateral but cannot place borrowing or lending orders.
MPC Key Share #2: Each Liquidator possesses a unique MPC key share (#2), used in conjunction with Fireblocks' key share (#1) to co-sign transactions related to liquidations.
The TSI Admin is responsible for the overall management and maintenance of the TSI system. Their key responsibilities include:
Organization Creation: The TSI Admin creates new organization accounts within the system.
Admin Invitation: The TSI Admin invites individuals to become Organization Admins for specific organizations.
The Organization Admin manages the users and wallets within their respective organization. Their key responsibilities include:
Wallet Creation: The Organization Admin creates wallets under their organization's account.
Wallet Assignment: The Organization Admin assigns users to those wallets, granting them appropriate access.
MPC Key Share #2: Similar to users, the Organization Admin also possesses a unique MPC key share (#2) for co-signing transactions related to their administrative duties.
A new organization is created within the TSI system by the TSI Admin.
The TSI Admin invites an individual to become the Organization Admin for that organization.
The Organization Admin creates wallets and users under the organization's account.
The Organization Admin assigns users to those wallets, granting them access to manage the assets within the wallets.
MPC Key Generation and Use: Both users and the Organization Admin own and securely store their unique MPC key share (#2). This key share is generated the first time the user or admin signs in to TSI and is securely stored within their device's browser. Each encrypted key share is unique and stored only on the user's or admin's own device. When a transaction is initiated, this key share is used in conjunction with Fireblocks' key share (#1) to create a valid transaction signature. This 2-of-2 MPC scheme ensures that both the user/admin and Fireblocks must participate in signing the transaction, preventing unauthorized access and enhancing security.
