Skip to content

code

Directory actions

More options

Directory actions

More options

Latest commit

 

History

History

code

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
backend
backend
 
 
blockchain
blockchain
 
 
.env.example
.env.example
 
 
README.md
README.md
 
 
docker-compose.yml
docker-compose.yml
 
 

README.md

BlockGuardian - Professional Financial Services Platform

Executive Summary

BlockGuardian represents a cutting-edge financial services platform designed to meet the stringent requirements of modern investment management and regulatory compliance. This comprehensive version incorporates enterprise-grade security, robust compliance frameworks, and professional-quality user interfaces that align with industry best practices for financial technology solutions.

The platform provides a complete ecosystem for portfolio management, trading operations, risk assessment, and regulatory compliance, making it suitable for institutional investors, wealth management firms, and fintech companies seeking to deliver sophisticated financial services to their clients.

Table of Contents

Architecture Overview

BlockGuardian follows a modern microservices architecture with clear separation of concerns, ensuring scalability, maintainability, and regulatory compliance. The system is structured around four core components:

Component Directory Primary Function Key Technologies
Backend Services code/backend/ RESTful API, business logic, compliance, security, and data management. Flask, PostgreSQL, Redis
Frontend Application code/frontend/ Professional React-based user interface for trading and portfolio management. React, Next.js, Tailwind CSS
Blockchain Integration code/blockchain/ Smart contract implementation for tokenization, DeFi, and on-chain portfolio management. Solidity, Hardhat, Web3.py
Data Analytics code/data-analysis/ Advanced portfolio analytics, risk assessment, and predictive modeling. Python, Pandas, Jupyter

System Architecture Diagram

┌─────────────────┐    ┌─────────────────┐    ┌─────────────────┐
│   Frontend      │    │   Backend       │    │   Blockchain    │
│   React App     │◄──►│   Flask API     │◄──►│   Smart         │
│                 │    │                 │    │   Contracts     │
└─────────────────┘    └─────────────────┘    └─────────────────┘
         │                       │                       │
         │                       │                       │
         ▼                       ▼                       ▼
┌─────────────────┐    ┌─────────────────┐    ┌─────────────────┐
│   User          │    │   Database      │    │   External      │
│   Interface     │    │   PostgreSQL    │    │   APIs          │
│                 │    │                 │    │                 │
└─────────────────┘    └─────────────────┘    └─────────────────┘

Key Features

The platform is built on a foundation of robust financial and regulatory capabilities, summarized in the table below:

Category Feature Description Status
Portfolio Management Multi-Portfolio Support Manage multiple investment portfolios with distinct strategies and risk profiles. Implemented
Real-Time Valuation Live portfolio valuation with real-time market data integration. Implemented
Asset Allocation Dynamic asset allocation with rebalancing recommendations. Implemented
Trading Operations Advanced Order Management Support for market, limit, stop, and complex order types. Implemented
Real-Time Execution Low-latency order execution with smart routing and risk controls. Implemented
Decentralized Exchange (DEX) On-chain trading platform for tokenized assets with order matching. Implemented
Compliance (KYC/AML) Compliance Manager Automated customer verification, sanctions screening, and anti-money laundering monitoring. Implemented
Regulatory Reporting Automated generation of regulatory reports (CTR, SAR, etc.). Implemented
Immutable Audit Trail Comprehensive, database-backed audit logging for all transactions and system activities. Implemented
Security Multi-Factor Authentication Advanced MFA with TOTP and backup codes. Implemented
Adaptive Rate Limiting Enterprise-grade rate limiting to prevent API abuse and DDoS attacks. Implemented
Data Protection End-to-end encryption for sensitive data and secure session management. Implemented
Blockchain Tokenized Assets ERC20 standard for representing real-world assets with built-in fee mechanisms. Implemented
DeFi Integration Smart contracts for managing investment strategies and yield claiming in decentralized finance. Implemented
Data Analytics Preprocessing Pipeline Robust data loading and preprocessing with feature engineering for time-series and behavioral analysis. Implemented

Technology Stack

BlockGuardian leverages a modern, high-performance technology stack to ensure scalability and reliability.

Component Technology Version Purpose
Backend Framework Flask 2.3+ RESTful API development and core business logic.
Database PostgreSQL 14+ Primary data persistence with transactional integrity.
Caching/Messaging Redis 7+ Session management, caching, and rate limiting.
ORM SQLAlchemy Latest Object-Relational Mapping for secure database interaction.
Frontend Framework React 18+ User interface development with functional components.
Styling Tailwind CSS 3+ Utility-first CSS framework for responsive design.
Smart Contracts Solidity 0.8+ Development of secure and efficient smart contracts.
Blockchain Tools Hardhat/Web3.py Latest Development, testing, and deployment of smart contracts.
Data Science Pandas/Numpy Latest Data manipulation, analysis, and feature engineering.
Containerization Docker/Compose Latest Environment consistency and simplified deployment.

Security & Compliance Framework

The platform is engineered with a security-first approach, integrating robust controls across all layers of the application.

Area Control Description
Authentication Multi-Factor Auth (MFA) TOTP-based MFA with secure secret management.
Password Hashing Industry-standard hashing (e.g., bcrypt/PBKDF2) with salt.
Authorization Role-Based Access Control (RBAC) Granular permissions enforced at the API level.
Data Protection Encryption (At Rest/In Transit) AES-256 for storage and TLS 1.3 for communication.
Abuse Prevention Adaptive Rate Limiting Dynamic rate control based on user reputation and system load.
Compliance KYC/AML Manager Automated identity verification and anti-money laundering checks.
Sanctions Screening Real-time screening against global sanctions lists.
Auditability Immutable Audit Logging Comprehensive, time-stamped record of all critical system events.
Regulatory Automated Reporting Support for generating CTR, SAR, and other regulatory reports.

Performance Metrics

BlockGuardian is designed for high performance and scalability, targeting the following metrics:

Metric Category Target Metric Description
API Response Time Trading Operations: < 100ms Critical for low-latency order execution.
Authentication: < 200ms Fast user login and session creation.
Portfolio Data: < 500ms Quick retrieval of complex portfolio data.
Database Performance Query P95: < 50ms 95th percentile query response time.
Transactions: 1M/day Capacity to handle 1 million transactions daily.
Frontend Performance Initial Load Time: < 3s Fast time-to-content for the user interface.
Time to Interactive: < 5s Quick responsiveness for user interaction.
Scalability Concurrent Users: 10,000 Target for simultaneous active users.

Installation & Setup

Prerequisites

Before installing BlockGuardian, ensure you have the following prerequisites:

  • Python 3.9+ with pip package manager
  • Node.js 18+ with npm or yarn
  • PostgreSQL 14+ database server
  • Redis 7+ for caching and session management
  • Docker & Docker Compose (optional, for containerized deployment)

Backend Setup

  1. Clone the Repository

    git clone https://github.com/quantsingularity/BlockGuardian.git
cd BlockGuardian/code/backend

  2. Create Virtual Environment

    python -m venv venv
source venv/bin/activate  # On Windows: venv\Scripts\activate

  3. Install Dependencies

    pip install -r requirements.txt

  4. Environment Configuration

    cp .env.example .env
# Edit .env file with your configuration

  5. Database Setup

    # Create database
createdb blockguardian

# Run migrations
python manage.py db upgrade

# Seed initial data
python manage.py seed

  6. Start Backend Server

    python run.py

Frontend Setup

  1. Navigate to Frontend Directory

    cd ../frontend

  2. Install Dependencies

    npm install
# or
yarn install

  3. Environment Configuration

    cp .env.local.example .env.local
# Edit .env.local with your configuration

  4. Start Development Server

    npm run dev
# or
yarn dev

For containerized deployment:

# Build and start all services
docker-compose up -d

# View logs
docker-compose logs -f

# Stop services
docker-compose down

API Documentation

The API is structured around key financial services, providing secure and efficient access to portfolio, trading, and compliance functions.

Endpoint Category Method Path Description
Authentication POST /api/auth/login Authenticate user and issue JWT tokens.
POST /api/auth/logout Invalidate user session and refresh token.
Portfolio GET /api/portfolios Retrieve a list of the user's managed portfolios.
POST /api/portfolios Create a new investment portfolio.
Trading POST /api/orders Place a new trade order (market, limit, etc.).
DELETE /api/orders/{order_id} Cancel a pending trade order.
Compliance POST /api/compliance/kyc/verify Submit documents for KYC verification.
GET /api/compliance/reports/{report_type} Generate and retrieve regulatory compliance reports.

Detailed request and response schemas are available in the Swagger/OpenAPI 3.0 specification.

Database Schema

The database schema is built on PostgreSQL, ensuring transactional integrity and high availability. The core tables are summarized below, with full SQL definitions provided for reference.

Table Name Primary Purpose Key Fields
users User authentication, profile, and compliance status. id, email, kyc_status, aml_risk_level
portfolios Investment portfolio details and asset allocation. id, user_id, total_value, risk_level
transactions Record of all financial transactions and trades. id, user_id, asset_symbol, total_amount
suspicious_activities Records flagged activities for AML reporting (SAR). id, user_id, sar_number, risk_score
audit_logs Immutable record of all critical system and user events. id, timestamp, event_type, user_id

Core Tables (SQL Snippets)

users

CREATE TABLE users (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    email VARCHAR(255) UNIQUE NOT NULL,
    password_hash VARCHAR(255) NOT NULL,
    first_name VARCHAR(100) NOT NULL,
    last_name VARCHAR(100) NOT NULL,
    phone_number VARCHAR(20),
    date_of_birth DATE,
    country VARCHAR(2),
    kyc_status VARCHAR(20) DEFAULT 'pending',
    aml_risk_level VARCHAR(20) DEFAULT 'low',
    is_active BOOLEAN DEFAULT true,
    mfa_enabled BOOLEAN DEFAULT false,
    mfa_secret VARCHAR(255),
    backup_codes TEXT,
    created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
    updated_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
    metadata JSONB
);

portfolios

CREATE TABLE portfolios (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    user_id UUID NOT NULL REFERENCES users(id),
    name VARCHAR(255) NOT NULL,
    description TEXT,
    total_value DECIMAL(15,2) DEFAULT 0,
    invested_amount DECIMAL(15,2) DEFAULT 0,
    cash_balance DECIMAL(15,2) DEFAULT 0,
    unrealized_pnl DECIMAL(15,2) DEFAULT 0,
    realized_pnl DECIMAL(15,2) DEFAULT 0,
    risk_level VARCHAR(20) DEFAULT 'moderate',
    benchmark_symbol VARCHAR(10),
    auto_rebalance BOOLEAN DEFAULT false,
    rebalance_threshold DECIMAL(5,4) DEFAULT 0.05,
    created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
    updated_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
    asset_allocation JSONB,
    metadata JSONB
);

transactions

CREATE TABLE transactions (
    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
    user_id UUID NOT NULL REFERENCES users(id),
    portfolio_id UUID REFERENCES portfolios(id),
    transaction_id VARCHAR(50) UNIQUE NOT NULL,
    transaction_type VARCHAR(20) NOT NULL,
    asset_symbol VARCHAR(20),
    asset_name VARCHAR(255),
    quantity DECIMAL(15,8),
    price DECIMAL(15,2),
    total_amount DECIMAL(15,2) NOT NULL,
    fees DECIMAL(15,2) DEFAULT 0,
    currency VARCHAR(3) DEFAULT 'USD',
    status VARCHAR(20) DEFAULT 'pending',
    settlement_date DATE,
    created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
    updated_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
    metadata JSONB
);

Testing Strategy

A rigorous testing strategy is employed across the entire platform to ensure code quality, security, and compliance.

Test Type Component Coverage Goal Description
Unit Tests Backend (Models, Services) 90% Isolated testing of business logic and data models.
Frontend (Components) 85% Testing individual component functionality and rendering.
Integration Tests Backend (API, DB, Compliance) High Testing interactions between modules and external services.
End-to-End (E2E) Frontend (User Workflows) Critical Paths Simulating complete user journeys and cross-browser compatibility.
Performance Tests Backend (API) N/A Load and stress testing to ensure scalability under peak load.
Security Tests All 100% (Critical) Authentication, authorization, and vulnerability scanning.

License

BlockGuardian is licensed under the MIT License. See the LICENSE file for details.