API double-layer authentication is a feature inside SFOX Custody that lets users of the SFOX API improve security of their account using public/private key cryptography. Users will upload their public key to SFOX and upon each subsequent API request the user will need to provide a new header containing information signed by their private key.
# Generate private key and store in a file named private-key.pem
openssl genrsa -out private-key.pem 2048