> ## Documentation Index
> Fetch the complete documentation index at: https://docs.magic.link/llms.txt
> Use this file to discover all available pages before exploring further.

# Introduction

> Server-side wallet management solutions with enterprise-grade security. Choose between Express API for simplified integration or Core API for maximum control.

## Server Wallets Overview

Magic's Server Wallets provide server-side wallet management solutions with enterprise-grade security. Choose between Express API for simplified integration or Core API for maximum control and compliance.

## Choose Your API

<CardGroup cols={2}>
  <Card title="Express API" icon="rocket" href="/server-wallets/express-api/overview">
    Simplified wallet management with JWT authentication and trusted execution environment technology. Handles all key management internally for streamlined integration.
  </Card>

  <Card title="Core API" icon="server" href="/server-wallets/core-api/overview">
    Advanced server-side wallet management with AWS Nitro TEE security and key sharding. Gives developers freedom to choose how key management is handled.
  </Card>
</CardGroup>

### Key Benefits

<CardGroup cols={2}>
  <Card title="Enterprise Security" icon="shield-halved">
    Trusted Execution Environment (TEE) technology ensures private keys never leave secure hardware
  </Card>

  <Card title="Server-Side Only" icon="server">
    No client-side dependencies like iframes or local sessions for smooth user experiences
  </Card>

  <Card title="Multi-Chain Support" icon="link">
    Support for EVM chains, Solana, and Bitcoin with unified API endpoints
  </Card>

  <Card title="Flexible Integration" icon="puzzle-piece">
    Seamlessly incorporate into any tech stack with REST API endpoints
  </Card>
</CardGroup>

## Security Features

### Trusted Execution Environment (TEE)

<CardGroup cols={2}>
  <Card title="Secure Enclaves" icon="shield-halved">
    Private keys never leave the secure environment
  </Card>

  <Card title="Hardware Security" icon="microchip">
    All cryptographic operations performed in trusted hardware
  </Card>

  <Card title="Isolated Execution" icon="lock">
    Wallet operations run in completely isolated environments
  </Card>

  <Card title="Tamper Resistance" icon="shield-check">
    Protection against both software and hardware attacks
  </Card>
</CardGroup>

### Authentication Layers

Multiple authentication layers ensure secure access:

<Steps>
  <Step title="JWT Bearer Token" icon="key">
    User-specific authentication
  </Step>

  <Step title="API Key/Secret Key" icon="server">
    Magic service authentication and authorization
  </Step>

  <Step title="OIDC Provider ID" icon="id-card">
    Application-specific identification
  </Step>
</Steps>

### Key Management

<CardGroup cols={2}>
  <Card title="No Key Exposure" icon="eye-slash">
    Private keys are generated and stored entirely within the TEE
  </Card>

  <Card title="Automatic Key Derivation" icon="gear">
    Keys are derived deterministically for consistency
  </Card>

  <Card title="Secure Operations" icon="shield-halved">
    All signing operations happen within the secure enclave
  </Card>
</CardGroup>