Your wallet is safe. Here's why.
The most common question about the Energy-Free Node: "Am I giving a third party access to my funds?"
No. And this isn't a matter of trusting TRONAgg — it's how TRON's cryptography works. A custom node physically cannot access your private key or modify your transactions, regardless of who runs it.
How TRON transactions actually work
This is worth understanding once, because it applies to every node you'll ever use:
- Your wallet builds a transaction — recipient, amount, contract call
- Your wallet signs it locally — using your private key, which stays on your device
- The signed transaction goes to a node — the node forwards it to the TRON network
- The network validates the signature — if anything was tampered with, the transaction is rejected
The key insight: signing happens before the transaction reaches any node. By the time the Energy-Free Node sees your transaction, it's already sealed with a cryptographic signature that only your private key could have produced.
You write a letter (the transaction), seal it in a tamper-evident envelope (your cryptographic signature), and hand it to a courier (the node). The courier delivers it but can't open or alter it. Switching couriers doesn't change what's inside — and neither courier ever had the pen you wrote with.
What the node sees vs. what it doesn't
| Visible to the node | Why | |
|---|---|---|
| Your public address | Yes | Needed to delegate energy to you |
| Transaction details (recipient, amount) | Yes | Part of the signed transaction data |
| Your private key | Never | Not transmitted — signing is local |
| Your seed phrase | Never | Not transmitted — stored only on your device |
| Other accounts in your wallet | Never | Only the transacting address is visible |
What the node cannot do
Extract your private key — Your private key is never sent to any node. Not to TronGrid, not to TRONAgg, not to anyone. This is how TRON (and all blockchains) work.
Modify your transaction — Changing even a single byte of a signed transaction invalidates the cryptographic signature. The TRON network would reject it.
Send transactions on your behalf — Creating a valid transaction requires signing it with your private key. The node doesn't have it.
Access other tokens or balances — The node only processes what you explicitly broadcast. It has no mechanism to initiate actions on your account.
The Energy-Free Node vs. default nodes
From a security perspective, the Energy-Free Node is identical to any public TRON node. The only difference is what happens before your transaction is broadcast.
| Default node (TronGrid) | Energy-Free Node | |
|---|---|---|
| Sees your signed transaction | Yes | Yes |
| Can access your private key | No | No |
| Can modify your transaction | No | No |
| Can initiate transactions for you | No | No |
| Delegates energy before broadcast | No | Yes |
| Connection | HTTPS | HTTPS |
Same security model. Same cryptographic guarantees. The Energy-Free Node just adds one step: buying energy for your address before forwarding your transaction.
Built-in protection features
URL secrecy
Your node URL contains a unique secret key that links to your TRONAgg balance. This is the only credential needed to trigger energy purchases. Treat it like an API key:
- Don't share it in public channels or repositories
- Store it in environment variables for applications
- If it leaks, regenerate it immediately
Key regeneration
If your node URL has been exposed:
- Go to dashboard.tronagg.ai/node
- Click Regenerate Key
- Update the URL in your wallets and apps
- The old URL stops working instantly — anyone who had it can no longer trigger energy purchases
Address whitelisting
For extra control, restrict which TRON addresses can use your node:
- Go to dashboard.tronagg.ai/node
- Enable Address Whitelist
- Add the addresses that should receive energy
Any transaction from an address not on your list gets broadcast normally — without energy delegation. This is especially useful for apps that send from a known set of addresses.
Common security questions
Can TRONAgg steal my TRX or tokens? No. The node never has your private key. It can't create, sign, or broadcast transactions on your behalf. Your funds are fully under your control.
What if the Energy-Free Node goes down?
Your funds are on the blockchain — they don't depend on any node. Switch back to a default node (like api.trongrid.io) in your wallet settings and continue transacting. You just won't get automatic energy.
Is this a man-in-the-middle attack? No. Man-in-the-middle attacks require the ability to modify data. TRON transactions are cryptographically signed before they reach any node — altering a single byte makes the signature invalid and the network rejects the transaction.
Should I use HTTPS?
The Energy-Free Node URL always uses HTTPS (https://node.tronagg.ai/...). This encrypts communication between your wallet and the node, preventing anyone on your network from seeing your transaction details or secret key.
Is this safer, less safe, or the same as using TronGrid? The same. The cryptographic guarantees are identical. The only difference is who operates the server — and the added benefit of automatic energy provisioning.