Continuous instant transactions are being made on stock exchange sites. What happens when a user swaps a large amount? Such sites need automatic processing.

You said that the sites kept bitcoins as cold storage for safety.
If bitcoins are stored as cold storage, how do users exchange, deposit and withdrawals for bitcoin.

I asked for a site with software and system security.
How do we protect Bitcoins from the employees of the hosting company?

As I know btc site using web based page so it will verified depend on the site

For example bitcointalk using COMODO RSA Domain Validation Secure Server CA so people worried no more when they try to access the site

I do not know about it, because there are an awful lot of companies or sites that use this type of security. But for sure they are using a very strong security and it has a vulnerability that's hard enough when the hackers did not find loopholes via Hardware Security. Because as nice and perfect a system, if a hacker manages to take over the system hardware will surely crumble and successfully exploited. So, you need not worry for security against sites that already have many customers. For they will surely give the best security
 

I don't have private keys on the webserver.

Some people use deterministic keys on the server but I don't even do that.

I generate keys on a non-connected PC using my own algorithm involving a seed and a salt, sign the addresses with libsodium, and then upload to a database the server fetches from.

The server then verifies the signature (so it knows a hacker didn't inject the address, never happened to me but...) before offering it as a payment address.


(hexsk is hex signing key, m is message - which in this case is the base58 address, I can there verify on the web app with the libsodium php PECL module)