South Korea's Digital Asset Exchange Alliance (DAXA) rolled out a new compliance standard requiring member exchanges to invalidate API keys suspected of improper sharing. The Financial Supervisory Service (FSS) noted that automated trading accounts for roughly 30% of domestic crypto turnover, a concentration that made API-level controls a regulator priority.
Why it matters
Upbit, Bithumb, Coinone, Korbit and Gopax will strengthen API monitoring, require re-authentication after warnings, and deploy IP whitelisting systems. The FSS has framed the rules as consumer-protection measures aimed at curbing unauthorised algorithmic and copy-trading activity that has drawn retail-investor complaints. DAXA's voluntary framework has historically aligned with FSS guidance before formal rulemaking.
Market impact
The immediate effect lands on third-party API consumers — bot operators, copy-trading platforms and prop-desk-style services that route through shared or shared-adjacent keys — who face forced re-auth flows and tighter IP gating. For the broader Korean market, the move narrows the operating envelope for high-frequency and algorithmic strategies just as domestic volumes compete with offshore venues.
Source: [South Korea tightens crypto API, DAXA targets shared key abuse — Cryptopolitan](#webpage)
Frequently asked questions
-
Does DAXA's API standard carry the force of law in South Korea?
DAXA operates a voluntary industry framework that has historically aligned with FSS guidance before formal rulemaking, so the standard functions as coordinated exchange self-regulation backed by supervisory pressure rather than primary legislation.
WuBlockchain