Background

To ensure a consistent, secure, and reliable operating standard across the Canton Network, any party wishing to host nodes on behalf of others must meet the following minimum technical and operational requirements. These standards mitigate risk for all network participants.

Minimum Requirements

1. Infrastructure Standards 
   • All nodes must operate in a production-grade environment (cloud or on-prem), with organizational procedures, firewalls, and operational controls in place.
   • Kubernetes-based deployment is recommended for better lifecycle management, scaling, automated failover, and integration with Canton tooling.
2. History of Uptime 
   • Providers must demonstrate DevNet, TestNet, and MainNet operation for at least 15 continuous days, with fewer than 50 rounds missed and all upgrades performed correctly.
3. Demonstration of Multi-Tenancy 
   • Providers must have a multi-tenant plan, including a key segregation approach. If distributing rewards, the reward model must be explained.
4. Security & Access Management
   • Providers must secure node operation keys.
   • Providers must use existing wallet solutions or KMS systems to allow customers control of their own keys when hosted on multi-tenant validators.
5. Support & Incident Response
   • Providers must designate technical contacts responsible for hosting operations and maintain a 24/7 shared inbox for incident reporting.
   • Providers must have disaster recovery procedures in place.