Pillar 01 · HSM Production-ready HSM operating model
HSM configuration in our lab with a complete key schema, executable dual-control ceremony procedures, and runbooks for the most frequent incidents. This is the same manual format your team receives at the close of a real project.
Pillar 02 · Middleware Your dev team stops fighting with PINs
In our lab we maintain a middleware that validates PINs against a payments HSM. It handles ZMK and PVK, applies access control, logs full audit trails, and delivers reproducible benchmarks. Demonstrates concretely how the middleware separates your developers from cryptographic complexity without losing throughput.
Pillar 03 · PKI What an audit-passing PKI looks like
We have deployed a full CA hierarchy (offline root and online issuing) with documented certificate profiles, written ceremonies and working revocation. Serves as a reference against your institution's current PKI: where it is covered, where it is not.
Pillar 04 · Enablement Applied-cryptography lab for developers
Hands-on session where your developers implement PIN block, verify CVV and consume an HSM service correctly — writing and running code. Designed for teams with no prior cryptographic background. The same format replicated in on-site training.