South Korea’s crypto industry is moving to clamp down on shared API keys as automated trading climbs to roughly 30% of domestic volume. The Digital Asset Exchange Alliance (DAXA) has rolled out a new API-key compliance standard for its member exchanges — including Upbit, Bithumb, Coinone, Korbit and Gopax — that empowers platforms to invalidate keys they believe have been improperly lent or shared. Regulators and exchanges say such sharing can give third-party tools full access to price checks, balances, orders, deposits and withdrawals, and has been linked to unfair trading tactics and potential market manipulation. Under the new rules, exchanges can escalate monitoring after suspicious activity, issue warnings, require renewed identity verification and forcibly expire API keys. Member platforms will also implement IP whitelisting so API keys only function from pre-registered addresses, making keys harder to reuse from other locations or automated systems. The Financial Supervisory Service (FSS) has flagged automated, API-based trading as a growing risk — about 30% of crypto turnover in South Korea now flows through APIs — and warned that high-frequency and coordinated activity can produce false volume, spoofed orders and other distortions that misrepresent token liquidity. The regulator has also cautioned users about trading code shared online that enables aggressive automated strategies and urged investors not to chase unexplained price spikes. DAXA’s executive vice chairman Kim Jae-jin framed the change as a user-protection measure, saying the group will “respond swiftly to new and emerging threats.” The new API standard is explicitly not a ban on API trading; rather, it targets the practice of handing over account access or letting others trade through one’s exchange account. This API policy adds to broader tightening across South Korea’s crypto market. Regulators previously ordered exchanges to adopt five-minute balance checks, automatic trading halts and monthly audits after past control failures, and have warned that a proposed anti-money-laundering rule could balloon suspicious transaction reports from about 63,000 to more than 5.4 million. For traders and third-party tool providers, the change means more stringent monitoring, a likely reduction in shared-key use, and faster exchange intervention when account access looks irregular — all part of a wider push toward earlier action against market abuse and stronger operational controls.
South Korea's DAXA Tightens API Key Rules Amid 30% Automated Trading Surge
ChainGPTShare
Summary
South Korea’s DAXA has rolled out tighter API key rules for exchanges like Upbit and Bithumb. The move targets improperly shared keys linked to unfair trading. Trading volume has surged, with automated trading now making up 30% of total trading activity. The FSS has raised concerns over false volume and spoofed orders. DAXA’s new rules include IP whitelisting and closer monitoring to prevent abuse. The goal is to reduce risks without banning API trading.
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.