Version 1.5.0 March 2026

---

1. Executive Summary
2. Platform Overview
3. Technology Architecture
4. Authentication & Identity
5. Streaming Infrastructure
6. Content Delivery Network
7. Monetization Systems
8. Token Gating
9. XP Reward System
10. Advertisement System
11. Community Features
12. Security Architecture
13. Widget Ecosystem
14. Database Architecture
15. Performance & Scalability
16. Technical Specifications
17. Glossary

---

1. Executive Summary

Ghostchain Network is a production-grade video streaming platform built on modern cloud-native infrastructure with native Cardano blockchain integration. Released in early 2026, the platform combines live streaming, Video-on-Demand (VOD) delivery, and creator monetization with blockchain-native payment rails and token-gated content access.

Core Value Propositions

For Viewers:

• Watch-to-Earn rewards through the XP system
• Token-gated exclusive content access
• Native Cardano wallet authentication (browser wallets or social login)
• Real-time interactive features

For Creators:

• Multiple revenue streams (tips, PPV, advertising, ticket sales)
• 100% of base tip amounts (platform fee added on top)
• Token-gated content for premium experiences
• Comprehensive analytics dashboard
• Automatic stream archiving to VOD
• Subscription tiers with usage-based billing

For the Ecosystem:

• Cardano-first payment infrastructure
• Multi-token support (ADA, DJED, SNEK, HOSKY, USDCx, NIGHT)
• On-chain transaction verification
• Transparent, immutable payment records

Platform Highlights

---

2. Platform Overview

2.1 Feature Summary

Live Streaming

• Professional RTMP ingest infrastructure
• HLS delivery via global CDN
• Secure publish token authentication
• Multi-camera broadcasting with Director controls
• Automatic stream archiving
• Roadmap: Adaptive bitrate transcoding and WebRTC ultra-low latency

Video on Demand

• Direct-to-cloud upload (up to 2GB)
• Global CDN delivery
• Signed URL protection
• Automatic thumbnail generation
• View tracking with analytics

Monetization

• Pay-Per-View (PPV) with Cardano payments
• Creator tipping (multi-token support)
• Watch-to-Earn advertising
• Token-gated premium content
• Event ticketing with on-chain NFT minting
• Creator subscription tiers with Stripe billing
• Creator payout system

Social Features

• Real-time live chat
• Threaded comments on VOD
• Follow system
• Content moderation tools
• Creator-assigned moderators

---

3. Technology Architecture

3.1 Core Technology Stack

3.2 Application Structure

The platform follows a modular architecture with clear separation of concerns:

• App Router - Next.js pages and API routes
• Components - 174+ reusable React components
• Libraries - Core utilities and integrations
• Hooks - Custom React hooks for state management
• Contexts - React Context providers
• Widget App - Separate embedded widget application

3.3 API Architecture

The platform exposes a comprehensive REST API organized into functional domains:

---

4. Authentication & Identity

4.1 Wallet-First Architecture

Ghostchain Network implements a wallet-first authentication system where every user has a Cardano wallet. This approach provides:

• Simplicity: Single identity model - all users have wallets
• Web3-Native: True Cardano wallet ownership for all users
• Web2 UX: NuFi SSO provides familiar social login experience
• Security: Industry-standard cryptographic verification via wallet signatures

How Users Get Wallets

Both methods result in a fully functional Cardano wallet capable of:

• Sending and receiving ADA and native tokens
• Signing transactions for tips, PPV purchases, and token operations
• Holding tokens for gated content access
• Full CIP-30 API compatibility

---

4.2 NuFi SSO (Social Login)

NuFi SSO is a flagship feature that enables mainstream users to join Ghostchain without any blockchain knowledge. Users sign in with familiar social accounts and receive a fully functional, non-custodial Cardano wallet.

Key Benefits

For Users:

• Zero friction onboarding - no wallet extension installation required
• Sign in with existing Google, Facebook, or Discord account
• Full Cardano wallet created automatically
• Non-custodial - users retain complete control of their keys
• Built-in wallet widget for balance viewing, swaps, and fiat on-ramp

For the Platform:

• Dramatically lower barrier to entry for mainstream audiences
• Email captured from OAuth for Stripe billing compliance
• Full feature parity with browser extension wallet users
• Seamless upgrade path if users want to export keys later

Supported Providers

Authentication Flow

User clicks "Sign in with Google/Facebook/Discord"
        │
        ▼
┌─────────────────────────────────┐
│   NuFi SDK Opens OAuth Popup    │
│   User authenticates with       │
│   their social account          │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│   NuFi Creates/Retrieves        │
│   Non-Custodial Cardano Wallet  │
│   (keys managed by NuFi)        │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│   CIP-30 API Available          │
│   window.cardano.nufiSSO        │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│   Platform Gets Wallet Address  │
│   Creates Session with:         │
│   - walletSource: NUFI_SSO      │
│   - nufiProvider: google/etc    │
│   - email from OAuth            │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│   NuFi Widget Appears           │
│   (bottom-right corner)         │
│   For transactions, balance,    │
│   swaps, fiat on-ramp           │
└─────────────────────────────────┘

NuFi Wallet Widget

After authentication, a floating wallet widget appears providing:

The widget persists across sessions - when users return to the site, it automatically reappears.

Feature Parity

NuFi SSO users have complete feature parity with browser extension wallet users:

Email & Stripe Billing

NuFi SSO automatically captures the user's email address from their OAuth provider. This email is stored and used for:

• Stripe subscription billing (required for compliance)
• Usage alerts and notifications
• Account recovery communications

CIP-30 wallet users who want Stripe subscriptions can add an email address in Settings → Email Settings.

---

4.3 CIP-30 Wallet Authentication (Browser Extensions)

For users who prefer browser extension wallets, Ghostchain officially supports three CIP-30 compliant Cardano wallets.

Officially Supported Browser Wallets

CIP-30 Compatibility: Any CIP-30 compliant Cardano browser wallet may work with Ghostchain, but the three wallets above are officially tested and recommended.

Authentication Flow

User selects wallet from connection modal
        │
        ▼
┌─────────────────────────────────┐
│   1. Nonce Generation           │
│   Server creates 32-byte        │
│   cryptographically random      │
│   nonce with 10-minute expiry   │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│   2. Signature Request          │
│   Wallet prompts user to sign   │
│   message using CIP-30          │
│   signData() method             │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│   3. Cryptographic Verification │
│   Server verifies Ed25519       │
│   signature with address        │
│   binding check                 │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│   4. Session Creation           │
│   7-day session created         │
│   HttpOnly cookie set           │
└─────────────────────────────────┘

Security Features

4.4 Session Management

Session Characteristics:

• Duration: 7 days
• Storage: Database-backed
• Cookie Type: HttpOnly, Secure, SameSite=Lax
• Identifier: UUID session ID

4.5 User Roles & Permissions

Role Hierarchy

---

5. Streaming Infrastructure

5.1 Live Streaming Architecture

Broadcaster (OBS/vMix)
        │
        ▼ RTMP
┌───────────────────────┐
│   Streaming Server    │
│   ├─ HLS Packaging    │
│   └─ Token Validation │
└───────────────────────┘
        │
        ▼ HLS
┌───────────────────────┐
│      Global CDN       │
│   Edge Distribution   │
└───────────────────────┘
        │
        ▼ Signed URLs
┌───────────────────────┐
│       Viewers         │
└───────────────────────┘

Current Delivery: Single-bitrate HLS at the broadcaster's output quality. Viewers receive the same quality stream that the creator sends from their broadcasting software (e.g., OBS).

Roadmap: Adaptive bitrate transcoding (1080p, 720p, 480p, 360p) and WebRTC ultra-low latency delivery are planned for a future infrastructure upgrade.

5.2 Stream Security

Security Model:

• Cryptographically random publish tokens
• Secure hashed storage (irreversible)
• Webhook validation before broadcast
• One-time token display with regeneration support

5.3 Streaming Specifications

Current Delivery:

• Single-bitrate HLS at broadcaster output quality
• Recommended broadcast settings: 1080p at 4000-6000 kbps
• MPEG-TS segment format via HLS

Planned ABR Profiles (Roadmap):

HLS Specifications:

• Optimized segment duration
• MPEG-TS segment format
• Configurable live window

5.4 Stream Archiving

Automatic conversion of live streams to VOD:

Archive Retention by Tier

Note: Published archives are never auto-deleted regardless of tier.

Entitlement Migration: Users with live stream access automatically receive archive access.

5.5 Multi-Camera Broadcasting

Ghostchain supports multi-camera live streams, allowing creators to broadcast multiple camera angles simultaneously with real-time switching.

How It Works

Creator configures cameras in Creator Studio
        │
        ▼
┌─────────────────────────────────┐
│  Each angle → separate RTMP     │
│  stream to Ant Media Server     │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│  HLS packaging per angle        │
│  CDN delivery via BunnyCDN      │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│  Viewer player preloads all     │
│  angles as hidden <video>       │
│  elements with HLS.js           │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│  Camera switch = CSS visibility │
│  swap (no rebuffering)          │
└─────────────────────────────────┘

Viewer Experience

• Single Camera Mode: Watch one angle at a time with numbered camera buttons
• Grid Mode: View all cameras simultaneously in a mosaic layout
• Camera Switching: Click any camera button to switch instantly
• Grid Exit: Clicking a camera in grid mode switches to single view

Director Widget

Creators and assigned directors can control the broadcast in real-time via the Director widget:

• ATEM-style camera switching interface
• Grid/mosaic toggle for multi-view monitoring
• Camera status indicators (broadcasting, pending, offline)
• Secure postMessage bridge between widget iframe and player

Technical Details

• Buffer Management: Active camera gets full buffer, preloaded cameras get minimal buffer, stopped cameras load nothing
• PDT Synchronization: Uses #EXT-X-PROGRAM-DATE-TIME HLS tags to sync angles. Nudges playback rate ±3% for small drift (200ms-2s), hard seeks for larger drift (>2s)
• Device Adaptation: No artificial limits on modern devices. Only restricts on genuinely slow connections (2G/slow-2G via Network Information API)
• Billing Deduplication: Angle streams share the parent stream's billing period. A 2-hour broadcast with 4 cameras = 2 live hours, not 8

---

6. Content Delivery Network

6.1 CDN Integration

Architecture:

• Pull zone configuration from object storage
• Global edge distribution via BunnyCDN's worldwide network
• Token authentication for protected content
• Separate zones for VOD and live streaming

Security:

• Cryptographically signed URLs
• Time-limited access tokens
• Anti-hotlinking protection

6.2 Playback Gateway

Three-layer security for content access:

Heartbeat System:

• Regular client-server communication
• Session extension on activity
• Watch time tracking for analytics

6.3 Concurrent Stream Limiting

Strategy: Newest Device Wins

When a user watches on multiple devices:

1. Detect active sessions
2. Terminate older sessions
3. Allow newest to continue
4. Notify terminated sessions gracefully

---

7. Monetization Systems

7.1 Cardano Payment Architecture

All payments use multi-output transactions with exactly two outputs:

Benefits:

• On-chain fee transparency
• Atomic transaction processing
• Immutable payment proof
• No off-chain processing required

7.2 Supported Tokens

PPV payments default to USDCx. Tips support all 6 tokens.

7.3 Pay-Per-View (PPV)

Fee Structure:

• Platform fee: 10% (added on top)
• Creator receives: 100% of base price
• User pays: base price + 10%

Example (5 ADA content):

Base price:    5 ADA → Creator
Platform fee:  0.5 ADA → Platform
Total paid:    5.5 ADA

Transaction Verification:

• Multiple block confirmations required
• On-chain verification via Blockfrost API
• Automatic entitlement creation on confirmation

7.4 Tipping System

Two-Step Flow:

1. Payment info generation (no DB record until confirmed)
2. Record creation after wallet submission
3. On-chain verification and confirmation

Fee Structure:

• Base fee: 5% (added on top)
• Minimum fee: 1 ADA
• Creator receives: 100% of tip amount

Example (10 ADA tip):

Tip amount:    10 ADA → Creator
Platform fee:   1 ADA → Platform (minimum applied)
Total paid:    11 ADA

7.5 Creator Subscription Tiers

Creators can subscribe to paid tiers for increased resource limits and professional features.

Tier Comparison

Overage Billing

Paid tier creators can opt-in to overage billing to exceed their limits:

Spend Cap: Creators can set a maximum monthly overage spend to prevent unexpected charges.

Usage Tracking

• Real-time usage dashboard
• Alerts at 50%, 80%, and 100% thresholds
• Daily usage aggregation from CDN logs
• Prorated billing for mid-cycle tier changes

7.6 Event Ticketing

Creators can sell tickets to scheduled events (concerts, premieres, watch parties) with on-chain NFT minting for ticket proof-of-purchase.

Purchase Flow

Viewer browses event page
        │
        ▼
┌─────────────────────────────────┐
│  Select ticket tier             │
│  (e.g., General, VIP, Premium) │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│  Cardano payment transaction    │
│  Creator wallet + Platform fee  │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│  On-chain verification via      │
│  Blockfrost (3 confirmations)   │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│  Ticket NFT minted with         │
│  CIP-25 metadata                │
│  (event name, tier, seat info)  │
└─────────────────────────────────┘
        │
        ▼
┌─────────────────────────────────┐
│  Entitlement created            │
│  Viewer can access stream       │
└─────────────────────────────────┘

CIP-25 Ticket Metadata

Each ticket NFT includes standardized metadata:

• Event name and description
• Tier name and tier-specific imagery
• Event date and time
• Unique ticket number
• Creator information

Fee Structure

• Platform fee: 10% (added on top of ticket price)
• Creator receives: 100% of ticket price
• Buyer pays: ticket price + 10%

Inventory Management

• Creators set per-tier supply caps
• Real-time inventory tracking
• Automatic sold-out detection
• Draft → Active → Ended event lifecycle

---

8. Token Gating

8.1 Token-Gated Content

Creators can restrict content access using token ownership or balance requirements:

Gating Types

Verification Flow

1. User requests gated content
2. System retrieves user's wallet address (stake address preferred)
3. Policy gating: Token ownership verified on-chain via Blockfrost
4. Balance gating: ADA or native token balance checked via Blockfrost
5. Ticket gating: Ticket purchase record verified in database
6. Entitlement created (24-hour expiry for policy/balance, permanent for tickets)
7. Access granted or denied

8.2 Wallet Address Support

Stake addresses are preferred as they provide complete wallet coverage.

8.3 Token Metadata Standards

Full CIP-25 compliance:

• IPFS protocol URLs
• Data URIs (inline SVG, base64)
• CBOR-encoded metadata
• Array-based chunked images
• Fallback to files array

8.4 NFT Profile Pictures

Users can set owned NFTs as profile avatars:

• Real-time ownership verification
• Automatic cache invalidation
• Fallback to default avatar

---

9. XP Reward System

9.1 Watch-to-Earn Mechanics

The XP system rewards users for watching content, preparing for future $GHOST token distribution.

Base Rate: 1 XP per minute watched Daily Cap: 240 XP (4 hours of content)

Earning Sources

9.2 Diminishing Returns

To ensure fair distribution and prevent farming:

Key Feature: Users can rewatch indefinitely at 1% XP - never reaches zero.

9.3 Level Progression

Default Formula (Square Root):

Level = floor(sqrt(totalXP / 100))

9.4 Multiplier Tiers

Viewer Multipliers:

9.5 Anti-Abuse Protections

The platform implements layered anti-abuse measures:

• Velocity Monitoring - Flags abnormal earning patterns for review
• Session Integrity - Validates continuous viewing
• Rate Limiting - Prevents automated abuse
• Server-Authoritative Calculations - All XP computed server-side
• Daily Cap Enforcement - Hard limits on daily earnings

9.6 Bootstrap Mode

Temporary phase for fair initial growth:

• All multipliers normalized to 1.00x
• Exit criteria: Sustained user engagement thresholds
• Prevents early adopter advantage

---

10. Advertisement System

10.1 Ad Types

10.2 Placement Types

10.3 Creator Revenue Share

• Creators earn a percentage of XP from ads viewed on their content
• Transparent tracking and attribution
• Stored separately for analytics

10.4 Daily Limits

• Maximum daily XP from ads enforced
• Resets at midnight
• Server-side validation

10.5 Fraud Prevention

The platform implements multi-layer fraud detection:

• Behavioral Analysis - Detects abnormal interaction patterns (rapid actions, click frequency)
• Timing Validation - Identifies impossible user actions (clicks before impressions)
• Session Verification - Ensures valid playback context
• Device Fingerprinting - Flags multiple accounts on the same device
• IP Reputation - Detects IP addresses shared by unusually many accounts

All suspicious activity is flagged and reviewed, with confidence-based scoring to minimize false positives.

10.6 Poll & Survey System

The platform supports comprehensive polling and survey functionality for audience engagement and market research.

Survey Types

Question Types (8 Total)

Features

• XP rewards for survey completion
• Duplicate response prevention
• Live results with real-time polling
• Question randomization option
• Fraud detection (fast response + pattern checks)

---

11. Community Features

11.1 Real-Time Chat

Features:

• Character limits for manageable messages
• Rate limiting to prevent spam
• Slow mode (configurable interval)
• Followers-only mode
• Subscribers-only mode
• Profanity filter
• Custom banned words

Message Flow:

1. Authentication check
2. Rate limiting
3. Chat settings validation
4. Ban/timeout check
5. Message creation
6. Automatic broadcast to subscribers

11.2 Comments System

Features:

• Threaded discussions
• Generous character limits
• Rate limiting
• Soft delete with audit trail

11.3 User Badges

11.4 Moderation Tools

Actions:

• Message/comment deletion
• User timeout (temporary)
• User ban (permanent)
• All actions logged for accountability

Protections:

• Cannot ban platform admins
• Cannot ban content creators on their own content
• Audit trail for all moderation actions

---

12. Security Architecture

12.1 Security Overview

12.2 Rate Limiting

Comprehensive rate limiting protects all API endpoints:

• Authentication endpoints - Strict limits to prevent brute force
• Sensitive operations - Additional restrictions for high-risk actions
• Payment endpoints - Balanced limits for legitimate transactions
• Public endpoints - Higher limits for general access
• Admin endpoints - Appropriate limits for administrative functions

All rate limits use sliding window algorithms for fair enforcement.

12.3 Input Validation

• Schema validation - Type-safe runtime validation on all inputs
• ORM parameterization - Automatic SQL injection prevention
• Whitelist validation - Strict validation for enums and options
• XSS prevention - Automatic output escaping

12.4 Role-Based Access Control

12.5 Data Protection

Encryption at Rest:

• AES-256-GCM for sensitive data
• Industry-standard password hashing

GDPR Compliance:

• Right to Access: Account settings
• Right to Rectification: Profile updates
• Right to Erasure: Grace period deletion
• Data Anonymization: Complete PII removal

12.6 Security Headers

The platform implements comprehensive security headers:

• Strict Transport Security (HSTS)
• Frame protection
• Content type enforcement
• XSS protection
• Content Security Policy
• Referrer control

---

13. Widget Ecosystem

13.1 Architecture

Widgets operate as a separate application embedded via sandboxed iframes:

┌─────────────────────────────────┐
│     Main Application           │
│  ┌───────────────────────────┐ │
│  │   Widget Sidebar          │ │
│  │  ┌─────────────────────┐  │ │
│  │  │  Sandboxed Widget   │  │ │
│  │  └─────────────────────┘  │ │
│  └───────────────────────────┘ │
└─────────────────────────────────┘
         ▲             │
         │  Secure     │
         │  Messaging  │
         └─────────────┘

13.2 Widget Types

13.3 Security Measures

• CORS validation with origin whitelisting
• Short-lived authentication tokens
• Iframe sandboxing
• Message type validation
• Secure cross-origin communication

13.4 SDK Capabilities

The Widget SDK provides:

• Ready state signaling
• Event communication
• Message listening
• Authentication token management
• Authenticated API requests

---

14. Database Architecture

14.1 Schema Overview

The platform uses a comprehensive relational database schema:

Core Model Groups

14.2 Key Models

User Model:

• Authentication data (wallet address, wallet source, NuFi provider)
• Profile information
• Statistics and metrics
• Billing fields (Stripe, subscription tier)
• Preferences and settings

Video Model:

• Content metadata
• Delivery configuration
• Gating settings
• Analytics data

Stream Model:

• Stream configuration
• Status tracking
• Security settings
• Widget configuration

MultiCam Model:

• Parent stream reference
• Camera angle configuration
• Layout and switching preferences

TicketEvent Model:

• Event metadata and scheduling
• Linked stream reference
• Ticket tiers with pricing and inventory
• Purchase tracking and NFT minting status

14.3 Performance Optimization

• Strategic indexing on frequently queried fields
• Composite indexes for complex queries
• Query optimization for common access patterns

---

15. Performance & Scalability

15.1 Caching Strategy

Multi-Layer Caching:

Performance Impact:

• Significant reduction in database queries
• Sub-10ms response times for cached data
• Graceful degradation when cache unavailable

15.2 Database Optimizations

• Connection pooling for efficient resource use
• Singleton client patterns
• Strategic indexing
• Query optimization

15.3 Client Optimizations

• Server-side rendering where beneficial
• Dynamic imports for code splitting
• Image optimization (WebP format)
• Infinite scroll with intersection observer

---

16. Technical Specifications

16.1 File Upload Limits

16.2 Supported Video Formats

16.3 Cooldown Systems

---

17. Glossary

---

Document Information

Whitepaper Version: 1.5.0 Platform Version: Ghostchain Network v1.5.0 Release Date: March 2026 Status: Production

---

Ghostchain Network - Where Creators Thrive