Manage your exchange API keys securely.
Primary knowledge hub
Primary knowledge hub for platform usage and feature reference.
API keys are generated on your exchange (Kraken) and added to QuantumEdge. Always create dedicated keys specifically for QuantumEdge rather than reusing keys from other services. Use descriptive names to track which key is used where.
QuantumEdge requires trade permissions for execution and recommends keys with withdrawal disabled at Kraken account level. The minimum required permissions are: query account balances, query open orders, and create/modify orders.
For optimal security, rotate your API keys periodically (e.g., every 90 days). To rotate, generate a new key on Kraken, update it in QuantumEdge, verify the connection, then revoke the old key on Kraken.
All API credentials are encrypted at rest using AES-256 encryption. Keys are never logged, displayed in full, or transmitted in plain text. Only the last four characters are shown in the UI for identification purposes.