What is the best tech stack for a cryptocurrency exchange in 2027?

👁 0 views📖 3,096 words⏱ 14 min read5/28/2026

Direct Answer

The best tech stack for a 2027 cryptocurrency exchange is built around a matching-engine and trading core — AlphaPoint or Cake (B2Broker) white-label infrastructure for new venues, or a custom-built matching engine for scale — wired to institutional-grade custody (Fireblocks for MPC wallets, with BitGo or Copper as alternates), on-chain compliance (Chainalysis for blockchain analytics and AML, Elliptic or TRM Labs as scaling alternates), identity verification (Sumsub for KYC), Travel Rule messaging (Notabene), and trade surveillance (Eventus or Solidus Labs).

Node and RPC access comes from Alchemy, Infura, or Blockdaemon; fiat moves through banking partners and on-ramps like MoonPay or Banxa; and crypto accounting runs on Bitwave or Cryptio. This tech stack treats the order book as the product, custody as an existential control, and on-chain compliance as the license to operate.

TL;DR
— A crypto exchange tech stack is unlike any other RevOps stack because three layers can end the business overnight: the matching engine (latency and uptime are the product), custody and key management (a single breach equals insolvency), and blockchain analytics plus Travel Rule compliance (the license to keep banking partners).
Startups buy white-label trading infrastructure plus Fireblocks, Chainalysis, Sumsub, and Notabene; scaling exchanges add Elliptic or TRM, Eventus surveillance, and multi-custody; large and institutional venues build custom matching engines on top of Fireblocks or BitGo, full analytics, and a real data warehouse.

Why the Cryptocurrency Exchange Tech Stack Works Differently

A cryptocurrency exchange is not a fintech app with a wallet bolted on. Four mechanics make this tech stack categorically different from the payment-processor stack covered in tk0127.

The matching engine, order book, and wallet infrastructure are the product. Customers do not buy features — they buy execution. A matching engine that adds 50 milliseconds of latency, drops orders under load, or shows a stale order book bleeds professional traders and market makers within hours. Uptime during volatility is the moment users judge you, and it is the exact moment systems fail. Unlike a SaaS company where the CRM is plumbing, here the trading core is the revenue surface, so it is either licensed from a proven vendor or built and owned outright.

Custody and key management are existential, not a feature. A breach of hot or cold wallet keys does not degrade service — it makes the exchange insolvent. There is no chargeback, no clawback, no insurance that fully covers a nine-figure on-chain theft. This forces a security model no other industry carries: multi-party computation or multisig signing, hardware security modules, cold storage with geographically split shards, withdrawal allowlists, and per-asset velocity limits. The custody layer is the only stack decision where the worst case is "the company no longer exists."

Blockchain analytics, AML, KYC, and Travel Rule compliance are mandatory and crypto-specific. Every deposit and withdrawal is a public on-chain transaction that must be screened against sanctioned addresses, mixers, darknet markets, and stolen-funds clusters before it settles. This is monitoring no traditional bank performs because the data does not exist off-chain. Layered on top is the Travel Rule, which forces exchanges to exchange sender and beneficiary identity data with the counterparty exchange on transfers above a threshold — a peer-to-peer messaging problem with no equivalent in card payments.

Fiat on/off-ramps, banking partners, and regulatory exposure are heavy and uncertain. Moving dollars in and out depends on banking partners who can de-risk an exchange with 30 days notice, so most venues run redundant banking and third-party on-ramps. Regulatory surface spans federal money-services-business registration, state-by-state licensing (including the New York BitLicense), the EU MiCA regime, and a market-surveillance obligation to detect wash trading and spoofing. No single stack decision satisfies all of it, so compliance tooling is wired through the entire architecture rather than sitting in one corner.

The Core Stack, Layer by Layer

Matching Engine & Trading Infrastructure — AlphaPoint or Cake by B2Broker (alternates: Chameleon/Modulus, Coinsdo, build-your-own). This is the order book, matching engine, trading API, and wallet orchestration — the heart of the venue. AlphaPoint and B2Broker's Cake white-label the entire exchange so a new operator can launch in weeks instead of years; Modulus (Chameleon) is a higher-customization licensed engine for teams that want more control.

At scale, every major exchange eventually builds its own matching engine to own latency, fees, and roadmap. White-label platforms run roughly $5,000-$30,000/month plus setup and revenue share; a custom engine is a multi-million-dollar multi-year engineering investment.

Market Data & Liquidity — Kaiko (alternates: liquidity from B2Broker, CoinAPI, native market makers). A thin order book is a dead exchange, so new venues source aggregated liquidity and reference pricing from a provider while they build organic volume. Kaiko supplies institutional market data, reference rates, and analytics; B2Broker and prime brokers supply actual liquidity feeds.

Kaiko enterprise data runs into the thousands per month; liquidity arrangements are negotiated as spread-share or fixed fees.

Digital-Asset Custody & Key Management — Fireblocks (alternates: BitGo, Copper, Anchorage Digital, Ledger Enterprise, Cobo). This is the most important non-negotiable layer. Fireblocks is the dominant institutional MPC wallet and custody platform — it manages key shards, automates hot and cold wallet policy, enforces withdrawal allowlists, and connects to hundreds of chains and DeFi protocols.

BitGo is the qualified-custodian alternate with insurance and a regulated trust; Copper and Anchorage serve institutional and US-regulated custody respectively; Ledger Enterprise and Cobo round out hardware and hybrid options. Fireblocks runs from roughly $5,000/month into six figures annually based on volume and asset count; this is where you spend without flinching.

Blockchain Analytics & On-Chain AML — Chainalysis (alternates: Elliptic, TRM Labs, Merkle Science). Every transaction is screened here. Chainalysis is the dominant on-chain monitoring and investigation platform — it scores deposit and withdrawal addresses against sanctions lists, mixers, and illicit clusters in real time, and it is what banking partners and regulators expect to see.

Elliptic and TRM Labs are strong alternates many scaling exchanges add for coverage and redundancy; Merkle Science targets cost-sensitive and APAC venues. Pricing is typically $50,000-$250,000+/year depending on transaction volume and modules.

KYC & Identity Verification — Sumsub (alternates: Jumio, Onfido by Entrust, Persona, Veriff). Before anyone trades, identity is verified against documents, liveness, and watchlists. Sumsub is popular with crypto venues for its all-in-one KYC, KYB, and AML screening tuned to crypto onboarding; Jumio and Onfido (now Entrust) are enterprise document-verification incumbents; Persona and Veriff offer flexible, developer-friendly flows.

Pricing is per-verification, roughly $1-$3 per check, scaling with onboarding volume.

Travel Rule Compliance — Notabene (alternates: TRP/TRUST, Sygna, VerifyVASP). On transfers above the regulatory threshold, exchanges must securely exchange originator and beneficiary data with the counterparty venue. Notabene is the leading Travel Rule network and identity layer; TRUST (the TRP protocol) is the US bank-and-exchange consortium standard; Sygna and VerifyVASP have strong APAC adoption.

These are typically subscription plus per-message fees in the low-to-mid five figures annually.

Trade Surveillance & Market Manipulation Monitoring — Eventus Validus (alternates: Solidus Labs, Chainalysis market surveillance). Regulators and banking partners expect detection of wash trading, spoofing, layering, and pump-and-dump activity across the order book. Eventus (Validus) and Solidus Labs are the crypto-native trade surveillance platforms; Solidus specializes in digital-asset market integrity.

Expect $40,000-$150,000+/year depending on venue size and market count.

Node, RPC & Blockchain Infrastructure — Alchemy or Infura (alternates: QuickNode, Blockdaemon, self-hosted nodes). Reading balances, broadcasting transactions, and confirming deposits all require reliable blockchain node access. Alchemy and Infura (Consensys) lead on developer tooling and reliability; QuickNode offers multi-chain breadth; Blockdaemon serves institutional staking and node infrastructure.

Plans range from a few hundred to several thousand dollars per month, and serious exchanges also run their own nodes for sovereignty.

Fiat On/Off-Ramps & Banking — banking partners plus MoonPay or Banxa (alternates: Mercury-style fintech banking, multiple redundant banks). Fiat is the weakest link, so exchanges maintain redundant banking relationships and embed third-party card on-ramps so card deposits keep flowing if a banking rail pauses.

MoonPay and Banxa are the common on-ramp providers; banking partners are negotiated directly and treated as a continuity risk, not a vendor. On-ramp fees are spread-and-percentage based and passed largely to the user.

Crypto Accounting & Sub-Ledger — Bitwave or Cryptio (alternate: NetSuite for fiat GL). Reconciling on-chain movements, fees, gains, and cost basis is not something QuickBooks can do, so a crypto sub-ledger sits beneath the fiat general ledger. Bitwave and Cryptio specialize in digital-asset accounting, tax, and reporting; NetSuite or a similar ERP handles the fiat books.

These run roughly $1,500-$10,000+/month depending on transaction volume.

Security, Observability & BI — pen-testing partners, an observability stack, and Power BI. Recurring third-party penetration testing and bug bounties are table stakes given the threat model. Observability (latency, fill rates, deposit lag) protects the trading core, and Power BI or a similar tool sits on a warehouse for treasury, compliance, and revenue reporting once the venue has data worth modeling.

Real Operators & What They Run

A large global exchange (Coinbase / Kraken profile) — runs a custom-built matching engine for latency and roadmap control, multi-custody combining in-house cold storage with Fireblocks and BitGo, full Chainalysis plus Elliptic or TRM analytics coverage, Eventus or Solidus surveillance, in-house KYC augmented by Sumsub and Onfido, Notabene and TRUST for Travel Rule, and a real data warehouse feeding compliance and treasury BI.
A mid-size regional exchange — typically licenses a heavily customized engine or has grown off a white-label core, runs Fireblocks for custody, Chainalysis plus a second analytics vendor, Sumsub for KYC, Notabene for Travel Rule, and Eventus for surveillance, with redundant regional banking partners.
An institutional / OTC desk — leans on Fireblocks or Copper for custody and settlement, Kaiko for reference pricing, prime-broker liquidity, lighter retail KYC but heavy KYB and counterparty diligence, and Chainalysis for pre-trade address screening.
A white-label / new exchange — launches on AlphaPoint or B2Broker's Cake, plugs in Fireblocks, Chainalysis, Sumsub, and Notabene from day one, sources liquidity from B2Broker or Kaiko, and uses MoonPay or Banxa for fiat on-ramps.
A crypto brokerage / app (Robinhood-crypto profile) — often runs on a custody-and-execution partner or its own simplified ledger, Fireblocks-style custody, Chainalysis screening, Sumsub or Persona KYC, and embeds on-ramps rather than operating a full public order book.

The pattern across all five: custody runs through Fireblocks or BitGo, on-chain compliance runs through Chainalysis (with Elliptic or TRM added as scale demands), KYC is Sumsub-led, and Travel Rule is Notabene or TRUST — the trading core is the only layer that diverges, moving from white-label to custom as volume grows.

Integration Architecture

flowchart TD U[Trader / Client App] --> API[Trading API Gateway] API --> ME[Matching Engine + Order Book] U --> KYC[Sumsub KYC / Onboarding] KYC --> RISK[Risk + Onboarding Decision] ME --> WALLET[Wallet Orchestration] WALLET --> CUST[Fireblocks MPC Custody] CUST --> HOT[Hot Wallets] CUST --> COLD[Cold Storage Shards] WALLET --> NODE[Alchemy / Infura Nodes + RPC] NODE --> CHAIN[(Public Blockchains)] DEP[Deposit / Withdrawal] --> AML[Chainalysis On-Chain Screening] AML --> TR[Notabene Travel Rule] ME --> SURV[Eventus Trade Surveillance] FIAT[Banking Partner + MoonPay On-Ramp] --> WALLET ME --> LEDGER[Bitwave / Cryptio Sub-Ledger] LEDGER --> WH[(Data Warehouse)] AML --> WH SURV --> WH WH --> BI[Power BI Treasury + Compliance]

Failure Modes

Treating custody as a vendor checkbox instead of an existential control. Teams pick the cheapest wallet option, leave too much in hot wallets to cut withdrawal latency, or skip geographic shard separation. The first sophisticated attack drains the hot wallet, the insurance does not cover the full loss, and the exchange is insolvent overnight. Custody policy — hot/cold ratios, MPC quorum, withdrawal allowlists, velocity limits — is a board-level decision, not an engineering convenience.

Skipping or under-resourcing on-chain compliance to launch faster. A venue goes live with KYC but weak blockchain analytics and no Travel Rule, takes deposits from a sanctioned or mixer-linked address, and the banking partner discovers it during review. The bank exits with 30 days notice, fiat rails freeze, and the exchange cannot process withdrawals — a death spiral. Chainalysis-grade screening and Travel Rule messaging are the price of keeping a banking relationship, not optional upgrades.

Outgrowing white-label infrastructure without a migration plan. The exchange launches on AlphaPoint or B2Broker, hits real volume, and discovers it cannot control latency, fee logic, or new-asset listings fast enough to compete. Migrating a live order book and custody to a custom engine with funds in motion is one of the hardest projects in the industry. The fix is to plan the build-vs-buy migration before volume forces it, not after professional traders have already left.

No trade surveillance until a regulator or banking partner asks. Wash trading and spoofing inflate volume metrics and look harmless until a regulator subpoenas the order-book history or a banking partner demands a market-integrity attestation. Bolting on Eventus or Solidus retroactively means reconstructing months of trade data under deadline. Surveillance belongs in the stack from the first day the order book is live.

Budget & Sizing

Startup / White-Label Exchange (pre-launch to early volume). AlphaPoint or B2Broker Cake core, Fireblocks custody, Chainalysis analytics, Sumsub KYC, Notabene Travel Rule, Alchemy or Infura nodes, MoonPay or Banxa on-ramp, Cryptio for accounting. Liquidity sourced from B2Broker or Kaiko. Roughly $25,000-$70,000/month all-in including platform fees and revenue share, plus legal and licensing.

Scaling Exchange (meaningful daily volume, multi-region). Heavily customized or partially built engine, Fireblocks plus a second custodian (BitGo or Copper), Chainalysis plus Elliptic or TRM for redundant coverage, Eventus or Solidus surveillance, Sumsub KYC at scale, Notabene plus TRUST Travel Rule, redundant banking partners, and an early data warehouse. Roughly $80,000-$250,000/month across tooling, infrastructure, and compliance headcount.

Large / Institutional Exchange (top-tier global venue). Custom-built matching engine, multi-custody (in-house cold storage plus Fireblocks and BitGo), full Chainalysis, Elliptic, and TRM analytics, enterprise surveillance, in-house plus vendor KYC, full Travel Rule network membership, a real data warehouse with Power BI, and a large security and compliance organization. Tooling and infrastructure run $300,000-$1,500,000+/month, dwarfed by engineering, security, and regulatory headcount.

30/60/90 Day Implementation Plan

flowchart LR A[Days 0-30: Foundation] --> B[Days 31-60: Compliance + Liquidity] B --> C[Days 61-90: Launch + Surveillance] A --> A1[Select white-label engine or scope build] A --> A2[Stand up Fireblocks custody policy] A --> A3[Integrate Sumsub KYC + Alchemy nodes] B --> B1[Wire Chainalysis screening] B --> B2[Deploy Notabene Travel Rule] B --> B3[Sign banking + MoonPay on-ramp] B --> B4[Source liquidity from Kaiko / B2Broker] C --> C1[Turn on Eventus surveillance] C --> C2[Connect Cryptio sub-ledger + BI] C --> C3[Pen-test, soft launch, scale]

Days 0-30 — Foundation. Decide build-vs-buy on the matching engine and either contract the white-label provider or scope the custom build. Stand up Fireblocks with documented custody policy: hot/cold ratios, MPC quorum, withdrawal allowlists, velocity limits. Integrate Sumsub for KYC onboarding and connect Alchemy or Infura for node and RPC access.

Lock down secrets management and HSM configuration before any funds move.

Days 31-60 — Compliance and Liquidity. Wire Chainalysis into every deposit and withdrawal path so screening happens before settlement. Deploy Notabene for Travel Rule messaging and join the relevant network. Sign banking partners — ideally two for redundancy — and embed MoonPay or Banxa for fiat on-ramps.

Source initial liquidity from Kaiko or B2Broker and validate reference pricing against the order book.

Days 61-90 — Launch and Surveillance. Turn on Eventus or Solidus trade surveillance before the public order book goes live. Connect Bitwave or Cryptio for the crypto sub-ledger and stand up reporting in Power BI. Complete third-party penetration testing and a bug bounty, run a closed beta, then soft-launch and scale liquidity and asset listings deliberately.

FAQ

Should a new exchange build its own matching engine or buy white-label infrastructure? Buy first. A white-label platform like AlphaPoint or B2Broker's Cake gets you to market in weeks and lets you validate demand before committing eight figures to a custom build. Build later, once volume, fee economics, and listing speed justify owning the trading core — but plan the migration path early, because moving a live order book and custody is one of the hardest projects in the industry.

Why is Fireblocks so dominant in crypto custody? Fireblocks combines MPC key management, automated hot/cold wallet policy, withdrawal allowlists, and connectivity to hundreds of chains and DeFi protocols in one platform, which removes the need for an exchange to hand-roll the single most dangerous part of its stack.

BitGo, Copper, and Anchorage are credible alternates, and most large exchanges run more than one custodian for redundancy.

What is the Travel Rule and why does it need its own tool? The Travel Rule requires exchanges to securely exchange originator and beneficiary identity data with the counterparty venue on transfers above a threshold. There is no on-chain field for this, so it is a peer-to-peer messaging and identity problem.

Notabene, TRUST, Sygna, and VerifyVASP are networks built specifically to route that data between exchanges, which is why it cannot be folded into normal AML tooling.

Do I really need both KYC and blockchain analytics? Yes — they screen different things. Sumsub-style KYC verifies who the customer is at onboarding; Chainalysis-style analytics screen the on-chain source and destination of every deposit and withdrawal against sanctioned addresses, mixers, and stolen-funds clusters.

A clean customer can still send funds from a tainted address, so both layers are mandatory to keep banking partners and regulators satisfied.

When does an exchange need trade surveillance like Eventus or Solidus? From the day the public order book is live. Wash trading, spoofing, and layering look harmless until a regulator or banking partner demands a market-integrity attestation, and reconstructing months of order-book history retroactively under deadline is painful.

Building surveillance in from launch is far cheaper than bolting it on later.

How does a crypto exchange tech stack differ from a payment processor or fintech stack? A payment processor moves fiat over card and bank rails with chargeback protection; a crypto exchange runs a matching engine where it custodies bearer assets that, once stolen, are gone forever.

That forces three unique layers — a latency-critical trading core, existential MPC custody, and on-chain analytics plus Travel Rule compliance — that have no equivalent in the payment-processor stack covered in tk0127.

Sources

Fireblocks — institutional MPC custody and wallet platform documentation and pricing overview (2026)
Chainalysis — blockchain analytics, KYT transaction monitoring, and sanctions-screening product materials (2026)
AlphaPoint — white-label exchange and matching-engine platform overview (2025)
B2Broker — Cake white-label exchange and crypto liquidity provider documentation (2026)
Notabene — Travel Rule network and VASP compliance reference (2026)
Sumsub — KYC, KYB, and crypto onboarding verification product guide (2026)
Eventus / Validus — crypto trade surveillance and market manipulation monitoring overview (2025)
Kaiko — institutional crypto market data and reference-rate documentation (2026)
BitGo and Copper — qualified-custodian and institutional digital-asset custody comparison notes (2027)

Download:

### Direct Answer

The best tech stack for a 2027 cryptocurrency exchange is built around a matching-engine and trading core — **AlphaPoint** or **Cake (B2Broker)** white-label infrastructure for new venues, or a custom-built matching engine for scale — wired to institutional-grade custody (**Fireblocks** for MPC wallets, with **BitGo** or **Copper** as alternates), on-chain compliance (**Chainalysis** for blockchain analytics and AML, **Elliptic** or **TRM Labs** as scaling alternates), identity verification (**Sumsub** for KYC), Travel Rule messaging (**Notabene**), and trade surveillance (**Eventus** or **Solidus Labs**). Node and RPC access comes from **Alchemy**, **Infura**, or **Blockdaemon**; fiat moves through banking partners and on-ramps like **MoonPay** or **Banxa**; and crypto accounting runs on **Bitwave** or **Cryptio**. This tech stack treats the order book as the product, custody as an existential control, and on-chain compliance as the license to operate.

> **TL;DR** — A crypto exchange tech stack is unlike any other RevOps stack because three layers can end the business overnight: the matching engine (latency and uptime are the product), custody and key management (a single breach equals insolvency), and blockchain analytics plus Travel Rule compliance (the license to keep banking partners). Startups buy white-label trading infrastructure plus Fireblocks, Chainalysis, Sumsub, and Notabene; scaling exchanges add Elliptic or TRM, Eventus surveillance, and multi-custody; large and institutional venues build custom matching engines on top of Fireblocks or BitGo, full analytics, and a real data warehouse.

## Why the Cryptocurrency Exchange Tech Stack Works Differently

A cryptocurrency exchange is not a fintech app with a wallet bolted on. Four mechanics make this tech stack categorically different from the payment-processor stack covered in tk0127.

1. **The matching engine, order book, and wallet infrastructure are the product.** Customers do not buy features — they buy execution. A matching engine that adds 50 milliseconds of latency, drops orders under load, or shows a stale order book bleeds professional traders and market makers within hours. Uptime during volatility is the moment users judge you, and it is the exact moment systems fail. Unlike a SaaS company where the CRM is plumbing, here the trading core is the revenue surface, so it is either licensed from a proven vendor or built and owned outright.

2. **Custody and key management are existential, not a feature.** A breach of hot or cold wallet keys does not degrade service — it makes the exchange insolvent. There is no chargeback, no clawback, no insurance that fully covers a nine-figure on-chain theft. This forces a security model no other industry carries: multi-party computation or multisig signing, hardware security modules, cold storage with geographically split shards, withdrawal allowlists, and per-asset velocity limits. The custody layer is the only stack decision where the worst case is "the company no longer exists."

3. **Blockchain analytics, AML, KYC, and Travel Rule compliance are mandatory and crypto-specific.** Every deposit and withdrawal is a public on-chain transaction that must be screened against sanctioned addresses, mixers, darknet markets, and stolen-funds clusters before it settles. This is monitoring no traditional bank performs because the data does not exist off-chain. Layered on top is the Travel Rule, which forces exchanges to exchange sender and beneficiary identity data with the counterparty exchange on transfers above a threshold — a peer-to-peer messaging problem with no equivalent in card payments.

4. **Fiat on/off-ramps, banking partners, and regulatory exposure are heavy and uncertain.** Moving dollars in and out depends on banking partners who can de-risk an exchange with 30 days notice, so most venues run redundant banking and third-party on-ramps. Regulatory surface spans federal money-services-business registration, state-by-state licensing (including the New York BitLicense), the EU MiCA regime, and a market-surveillance obligation to detect wash trading and spoofing. No single stack decision satisfies all of it, so compliance tooling is wired through the entire architecture rather than sitting in one corner.

## The Core Stack, Layer by Layer

**Matching Engine & Trading Infrastructure — AlphaPoint or Cake by B2Broker (alternates: Chameleon/Modulus, Coinsdo, build-your-own).** This is the order book, matching engine, trading API, and wallet orchestration — the heart of the venue. AlphaPoint and B2Broker's Cake white-label the entire exchange so a new operator can launch in weeks instead of years; Modulus (Chameleon) is a higher-customization licensed engine for teams that want more control. At scale, every major exchange eventually builds its own matching engine to own latency, fees, and roadmap. White-label platforms run roughly $5,000-$30,000/month plus setup and revenue share; a custom engine is a multi-million-dollar multi-year engineering investment.

**Market Data & Liquidity — Kaiko (alternates: liquidity from B2Broker, CoinAPI, native market makers).** A thin order book is a dead exchange, so new venues source aggregated liquidity and reference pricing from a provider while they build organic volume. Kaiko supplies institutional market data, reference rates, and analytics; B2Broker and prime brokers supply actual liquidity feeds. Kaiko enterprise data runs into the thousands per month; liquidity arrangements are negotiated as spread-share or fixed fees.

**Digital-Asset Custody & Key Management — Fireblocks (alternates: BitGo, Copper, Anchorage Digital, Ledger Enterprise, Cobo).** This is the most important non-negotiable layer. **Fireblocks** is the dominant institutional MPC wallet and custody platform — it manages key shards, automates hot and cold wallet policy, enforces withdrawal allowlists, and connects to hundreds of chains and DeFi protocols. BitGo is the qualified-custodian alternate with insurance and a regulated trust; Copper and Anchorage serve institutional and US-regulated custody respectively; Ledger Enterprise and Cobo round out hardware and hybrid options. Fireblocks runs from roughly $5,000/month into six figures annually based on volume and asset count; this is where you spend without flinching.

**Blockchain Analytics & On-Chain AML — Chainalysis (alternates: Elliptic, TRM Labs, Merkle Science).** Every transaction is screened here. **Chainalysis** is the dominant on-chain monitoring and investigation platform — it scores deposit and withdrawal addresses against sanctions lists, mixers, and illicit clusters in real time, and it is what banking partners and regulators expect to see. Elliptic and TRM Labs are strong alternates many scaling exchanges add for coverage and redundancy; Merkle Science targets cost-sensitive and APAC venues. Pricing is typically $50,000-$250,000+/year depending on transaction volume and modules.

**KYC & Identity Verification — Sumsub (alternates: Jumio, Onfido by Entrust, Persona, Veriff).** Before anyone trades, identity is verified against documents, liveness, and watchlists. **Sumsub** is popular with crypto venues for its all-in-one KYC, KYB, and AML screening tuned to crypto onboarding; Jumio and Onfido (now Entrust) are enterprise document-verification incumbents; Persona and Veriff offer flexible, developer-friendly flows. Pricing is per-verification, roughly $1-$3 per check, scaling with onboarding volume.

**Travel Rule Compliance — Notabene (alternates: TRP/TRUST, Sygna, VerifyVASP).** On transfers above the regulatory threshold, exchanges must securely exchange originator and beneficiary data with the counterparty venue. **Notabene** is the leading Travel Rule network and identity layer; TRUST (the TRP protocol) is the US bank-and-exchange consortium standard; Sygna and VerifyVASP have strong APAC adoption. These are typically subscription plus per-message fees in the low-to-mid five figures annually.

**Trade Surveillance & Market Manipulation Monitoring — Eventus Validus (alternates: Solidus Labs, Chainalysis market surveillance).** Regulators and banking partners expect detection of wash trading, spoofing, layering, and pump-and-dump activity across the order book. **Eventus** (Validus) and **Solidus Labs** are the crypto-native trade surveillance platforms; Solidus specializes in digital-asset market integrity. Expect $40,000-$150,000+/year depending on venue size and market count.

**Node, RPC & Blockchain Infrastructure — Alchemy or Infura (alternates: QuickNode, Blockdaemon, self-hosted nodes).** Reading balances, broadcasting transactions, and confirming deposits all require reliable blockchain node access. **Alchemy** and **Infura** (Consensys) lead on developer tooling and reliability; QuickNode offers multi-chain breadth; Blockdaemon serves institutional staking and node infrastructure. Plans range from a few hundred to several thousand dollars per month, and serious exchanges also run their own nodes for sovereignty.

**Fiat On/Off-Ramps & Banking — banking partners plus MoonPay or Banxa (alternates: Mercury-style fintech banking, multiple redundant banks).** Fiat is the weakest link, so exchanges maintain redundant banking relationships and embed third-party card on-ramps so card deposits keep flowing if a banking rail pauses. **MoonPay** and **Banxa** are the common on-ramp providers; banking partners are negotiated directly and treated as a continuity risk, not a vendor. On-ramp fees are spread-and-percentage based and passed largely to the user.

**Crypto Accounting & Sub-Ledger — Bitwave or Cryptio (alternate: NetSuite for fiat GL).** Reconciling on-chain movements, fees, gains, and cost basis is not something QuickBooks can do, so a crypto sub-ledger sits beneath the fiat general ledger. **Bitwave** and **Cryptio** specialize in digital-asset accounting, tax, and reporting; NetSuite or a similar ERP handles the fiat books. These run roughly $1,500-$10,000+/month depending on transaction volume.

**Security, Observability & BI — pen-testing partners, an observability stack, and Power BI.** Recurring third-party penetration testing and bug bounties are table stakes given the threat model. Observability (latency, fill rates, deposit lag) protects the trading core, and **Power BI** or a similar tool sits on a warehouse for treasury, compliance, and revenue reporting once the venue has data worth modeling.

## Real Operators & What They Run

- **A large global exchange (Coinbase / Kraken profile)** — runs a custom-built matching engine for latency and roadmap control, multi-custody combining in-house cold storage with Fireblocks and BitGo, full Chainalysis plus Elliptic or TRM analytics coverage, Eventus or Solidus surveillance, in-house KYC augmented by Sumsub and Onfido, Notabene and TRUST for Travel Rule, and a real data warehouse feeding compliance and treasury BI.
- **A mid-size regional exchange** — typically licenses a heavily customized engine or has grown off a white-label core, runs Fireblocks for custody, Chainalysis plus a second analytics vendor, Sumsub for KYC, Notabene for Travel Rule, and Eventus for surveillance, with redundant regional banking partners.
- **An institutional / OTC desk** — leans on Fireblocks or Copper for custody and settlement, Kaiko for reference pricing, prime-broker liquidity, lighter retail KYC but heavy KYB and counterparty diligence, and Chainalysis for pre-trade address screening.
- **A white-label / new exchange** — launches on AlphaPoint or B2Broker's Cake, plugs in Fireblocks, Chainalysis, Sumsub, and Notabene from day one, sources liquidity from B2Broker or Kaiko, and uses MoonPay or Banxa for fiat on-ramps.
- **A crypto brokerage / app (Robinhood-crypto profile)** — often runs on a custody-and-execution partner or its own simplified ledger, Fireblocks-style custody, Chainalysis screening, Sumsub or Persona KYC, and embeds on-ramps rather than operating a full public order book.

The pattern across all five: custody runs through Fireblocks or BitGo, on-chain compliance runs through Chainalysis (with Elliptic or TRM added as scale demands), KYC is Sumsub-led, and Travel Rule is Notabene or TRUST — the trading core is the only layer that diverges, moving from white-label to custom as volume grows.

## Integration Architecture

```mermaid
flowchart TD
    U[Trader / Client App] --> API[Trading API Gateway]
    API --> ME[Matching Engine + Order Book]
    U --> KYC[Sumsub KYC / Onboarding]
    KYC --> RISK[Risk + Onboarding Decision]
    ME --> WALLET[Wallet Orchestration]
    WALLET --> CUST[Fireblocks MPC Custody]
    CUST --> HOT[Hot Wallets]
    CUST --> COLD[Cold Storage Shards]
    WALLET --> NODE[Alchemy / Infura Nodes + RPC]
    NODE --> CHAIN[(Public Blockchains)]
    DEP[Deposit / Withdrawal] --> AML[Chainalysis On-Chain Screening]
    AML --> TR[Notabene Travel Rule]
    ME --> SURV[Eventus Trade Surveillance]
    FIAT[Banking Partner + MoonPay On-Ramp] --> WALLET
    ME --> LEDGER[Bitwave / Cryptio Sub-Ledger]
    LEDGER --> WH[(Data Warehouse)]
    AML --> WH
    SURV --> WH
    WH --> BI[Power BI Treasury + Compliance]
```

## Failure Modes

1. **Treating custody as a vendor checkbox instead of an existential control.** Teams pick the cheapest wallet option, leave too much in hot wallets to cut withdrawal latency, or skip geographic shard separation. The first sophisticated attack drains the hot wallet, the insurance does not cover the full loss, and the exchange is insolvent overnight. Custody policy — hot/cold ratios, MPC quorum, withdrawal allowlists, velocity limits — is a board-level decision, not an engineering convenience.

2. **Skipping or under-resourcing on-chain compliance to launch faster.** A venue goes live with KYC but weak blockchain analytics and no Travel Rule, takes deposits from a sanctioned or mixer-linked address, and the banking partner discovers it during review. The bank exits with 30 days notice, fiat rails freeze, and the exchange cannot process withdrawals — a death spiral. Chainalysis-grade screening and Travel Rule messaging are the price of keeping a banking relationship, not optional upgrades.

3. **Outgrowing white-label infrastructure without a migration plan.** The exchange launches on AlphaPoint or B2Broker, hits real volume, and discovers it cannot control latency, fee logic, or new-asset listings fast enough to compete. Migrating a live order book and custody to a custom engine with funds in motion is one of the hardest projects in the industry. The fix is to plan the build-vs-buy migration before volume forces it, not after professional traders have already left.

4. **No trade surveillance until a regulator or banking partner asks.** Wash trading and spoofing inflate volume metrics and look harmless until a regulator subpoenas the order-book history or a banking partner demands a market-integrity attestation. Bolting on Eventus or Solidus retroactively means reconstructing months of trade data under deadline. Surveillance belongs in the stack from the first day the order book is live.

## Budget & Sizing

- **Startup / White-Label Exchange (pre-launch to early volume).** AlphaPoint or B2Broker Cake core, Fireblocks custody, Chainalysis analytics, Sumsub KYC, Notabene Travel Rule, Alchemy or Infura nodes, MoonPay or Banxa on-ramp, Cryptio for accounting. Liquidity sourced from B2Broker or Kaiko. Roughly **$25,000-$70,000/month** all-in including platform fees and revenue share, plus legal and licensing.

- **Scaling Exchange (meaningful daily volume, multi-region).** Heavily customized or partially built engine, Fireblocks plus a second custodian (BitGo or Copper), Chainalysis plus Elliptic or TRM for redundant coverage, Eventus or Solidus surveillance, Sumsub KYC at scale, Notabene plus TRUST Travel Rule, redundant banking partners, and an early data warehouse. Roughly **$80,000-$250,000/month** across tooling, infrastructure, and compliance headcount.

- **Large / Institutional Exchange (top-tier global venue).** Custom-built matching engine, multi-custody (in-house cold storage plus Fireblocks and BitGo), full Chainalysis, Elliptic, and TRM analytics, enterprise surveillance, in-house plus vendor KYC, full Travel Rule network membership, a real data warehouse with Power BI, and a large security and compliance organization. Tooling and infrastructure run **$300,000-$1,500,000+/month**, dwarfed by engineering, security, and regulatory headcount.

## 30/60/90 Day Implementation Plan

```mermaid
flowchart LR
    A[Days 0-30: Foundation] --> B[Days 31-60: Compliance + Liquidity]
    B --> C[Days 61-90: Launch + Surveillance]
    A --> A1[Select white-label engine or scope build]
    A --> A2[Stand up Fireblocks custody policy]
    A --> A3[Integrate Sumsub KYC + Alchemy nodes]
    B --> B1[Wire Chainalysis screening]
    B --> B2[Deploy Notabene Travel Rule]
    B --> B3[Sign banking + MoonPay on-ramp]
    B --> B4[Source liquidity from Kaiko / B2Broker]
    C --> C1[Turn on Eventus surveillance]
    C --> C2[Connect Cryptio sub-ledger + BI]
    C --> C3[Pen-test, soft launch, scale]
```

**Days 0-30 — Foundation.** Decide build-vs-buy on the matching engine and either contract the white-label provider or scope the custom build. Stand up Fireblocks with documented custody policy: hot/cold ratios, MPC quorum, withdrawal allowlists, velocity limits. Integrate Sumsub for KYC onboarding and connect Alchemy or Infura for node and RPC access. Lock down secrets management and HSM configuration before any funds move.

**Days 31-60 — Compliance and Liquidity.** Wire Chainalysis into every deposit and withdrawal path so screening happens before settlement. Deploy Notabene for Travel Rule messaging and join the relevant network. Sign banking partners — ideally two for redundancy — and embed MoonPay or Banxa for fiat on-ramps. Source initial liquidity from Kaiko or B2Broker and validate reference pricing against the order book.

**Days 61-90 — Launch and Surveillance.** Turn on Eventus or Solidus trade surveillance before the public order book goes live. Connect Bitwave or Cryptio for the crypto sub-ledger and stand up reporting in Power BI. Complete third-party penetration testing and a bug bounty, run a closed beta, then soft-launch and scale liquidity and asset listings deliberately.

## FAQ

**Should a new exchange build its own matching engine or buy white-label infrastructure?**
Buy first. A white-label platform like AlphaPoint or B2Broker's Cake gets you to market in weeks and lets you validate demand before committing eight figures to a custom build. Build later, once volume, fee economics, and listing speed justify owning the trading core — but plan the migration path early, because moving a live order book and custody is one of the hardest projects in the industry.

**Why is Fireblocks so dominant in crypto custody?**
Fireblocks combines MPC key management, automated hot/cold wallet policy, withdrawal allowlists, and connectivity to hundreds of chains and DeFi protocols in one platform, which removes the need for an exchange to hand-roll the single most dangerous part of its stack. BitGo, Copper, and Anchorage are credible alternates, and most large exchanges run more than one custodian for redundancy.

**What is the Travel Rule and why does it need its own tool?**
The Travel Rule requires exchanges to securely exchange originator and beneficiary identity data with the counterparty venue on transfers above a threshold. There is no on-chain field for this, so it is a peer-to-peer messaging and identity problem. Notabene, TRUST, Sygna, and VerifyVASP are networks built specifically to route that data between exchanges, which is why it cannot be folded into normal AML tooling.

**Do I really need both KYC and blockchain analytics?**
Yes — they screen different things. Sumsub-style KYC verifies who the customer is at onboarding; Chainalysis-style analytics screen the on-chain source and destination of every deposit and withdrawal against sanctioned addresses, mixers, and stolen-funds clusters. A clean customer can still send funds from a tainted address, so both layers are mandatory to keep banking partners and regulators satisfied.

**When does an exchange need trade surveillance like Eventus or Solidus?**
From the day the public order book is live. Wash trading, spoofing, and layering look harmless until a regulator or banking partner demands a market-integrity attestation, and reconstructing months of order-book history retroactively under deadline is painful. Building surveillance in from launch is far cheaper than bolting it on later.

**How does a crypto exchange tech stack differ from a payment processor or fintech stack?**
A payment processor moves fiat over card and bank rails with chargeback protection; a crypto exchange runs a matching engine where it custodies bearer assets that, once stolen, are gone forever. That forces three unique layers — a latency-critical trading core, existential MPC custody, and on-chain analytics plus Travel Rule compliance — that have no equivalent in the payment-processor stack covered in tk0127.

## Sources

- Fireblocks — institutional MPC custody and wallet platform documentation and pricing overview (2026)
- Chainalysis — blockchain analytics, KYT transaction monitoring, and sanctions-screening product materials (2026)
- AlphaPoint — white-label exchange and matching-engine platform overview (2025)
- B2Broker — Cake white-label exchange and crypto liquidity provider documentation (2026)
- Notabene — Travel Rule network and VASP compliance reference (2026)
- Sumsub — KYC, KYB, and crypto onboarding verification product guide (2026)
- Eventus / Validus — crypto trade surveillance and market manipulation monitoring overview (2025)
- Kaiko — institutional crypto market data and reference-rate documentation (2026)
- BitGo and Copper — qualified-custodian and institutional digital-asset custody comparison notes (2027)

Was this helpful?

⌬ Apply this in PULSE

Gross Profit CalculatorModel margin per deal, per rep, per territory

Deep dive · related in the library