// blog
Notas de ingeniería desde Buenos Aires.
Actualizaciones de producto, reportes de consultoría y opiniones sobre software de sistemas que importan a equipos mid-market en LATAM y Norteamérica.
Open source
Posts sobre Aether, Craton HSM, Craton Shield.
Why we rewrote SoftHSM in Rust
Buffer overflows in attribute parsing, use-after-free in session lifecycle, double-free in error paths. The case for a PKCS#11 v3.0 HSM with zero unsafe in crypto paths.
- rust
- cryptography
- hsm
Benchmarking RustHSM vs SoftHSMv2
Criterion numbers across RSA, ECDSA, AES-GCM, ML-DSA, and ML-KEM. Where the backend choice matters, and where it doesn't.
- rust
- hsm
- benchmarks
HSM for fintech compliance in LATAM
Why payment processors in Argentina, Brazil, and Mexico are re-evaluating their cryptographic stack, and what a FIPS-ready software HSM changes.
- fintech
- latam
- hsm
Zero-trust vehicle security with Craton Shield
Why CAN IDS, SecOC, and V2X are converging on a single #![no_std] Rust stack — and what that means for Tier-1s and OEMs.
- automotive
- iso-26262
- un-r155
Aether: beating gzip-9 with a neural state-space model
A diagonal linear SSM with 66 parameters, adaptive from scratch per block. 17.1% smaller than gzip-9 on the Silesia Corpus.
- compression
- neural
- rust
Consultoría & MSP
Lecciones de proyectos de servicios.
Why We Rewrote SoftHSMv2 in Rust
Craton HSM is a memory-safe, post-quantum-ready PKCS#11 software HSM in Rust — a modern replacement for the unmaintained SoftHSMv2.
- rust
- security
- cryptography
embedded-iot-security
Nearshore vs offshore: the Argentina case for NA mid-market
Timezone overlap, engineering seniority, and the arithmetic that makes Buenos Aires a rational answer for North American mid-market teams.
- outsourcing
- nearshore
- argentina
Digital transformation without a two-year megaproject
Thin-slice rebuilds, one workflow at a time. How we took a kitchen manufacturer from a 14-tab Excel macro to a 40-minute quoting pipeline in 10 weeks.
- digital-transformation
- mid-market
- cpq
MSP for specialized stacks: what the generic shops miss
When your production systems include Postgres clusters, HSMs, and embedded gateways, the average MSP runbook is a liability, not an asset.
- msp
- managed-services
- postgres
Technology consulting for the mid-market, minus the theatre
Architecture reviews that end in a written document, not a slide deck. Due-diligence that survives a re-read two years later.
- consulting
- architecture
- due-diligence
A Rust adoption playbook for teams that already ship
Incremental Rust in a C or Python codebase — what to migrate first, what to leave alone, and how to keep the old build green while the new one lands.
- rust
- adoption
- migration
IT services for 120-seat companies that are not IT companies
You do not need an MSP that pretends to be a helpdesk for a Fortune 500. You need someone who can keep your 120-seat business running, and leave when they are not needed.
- it-services
- managed-it
- mid-market