// industries

Where we show up most often.

We don't claim vertical expertise we don't have. These four are where we've done repeat work and where our open-source products originated.

• Financial services

  Cryptographic work is where Rust earns its keep. HSM integrations, post-quantum readiness, and payment-gateway rebuilds are our most repeated engagements.

  Example work

  • PKCS#11 HSM integrations and migrations
  • ISO 20022 / SWIFT MT message pipelines
  • FIPS 140-3 readiness engineering
  • AFIP / SUNAT / RFB e-invoicing integrations for LATAM

  Compliance context

  • PCI DSS
  • FIPS 140-3
  • SOC 2 Type II
  • ISO 27001

• Automotive

  Craton Shield comes from this work. CAN/Ethernet IDS, V2X security, AUTOSAR-Adaptive integrations — #![no_std] Rust where C++ dominates.

  Example work

  • ECU firmware hardening and migration off C
  • AUTOSAR-Adaptive service components
  • V2X (1609.2) secure message pipelines
  • UDS diagnostic gateways and SecOC implementations

  Compliance context

  • ISO 26262 ASIL-B/D
  • UN R155 / R156
  • ISO 21434

• Industrial IoT / OT

  OPC-UA, Modbus, and PROFINET landscapes are getting their first real memory-safe IDS. We build them and the telemetry pipelines they feed into.

  Example work

  • Modbus / OPC-UA / PROFINET intrusion detection
  • Gateway firmware with tamper-evident logging
  • OTA orchestration with rollback
  • Historian + SIEM integration pipelines

  Compliance context

  • IEC 62443
  • NIST SP 800-82

• Healthcare and medical devices

  HL7/FHIR message IDS, DICOM monitoring, and IEC 62304-grade firmware — where memory safety is not a nice-to-have.

  Example work

  • HL7 v2 / FHIR R4 message IDS and routing
  • DICOM protocol monitoring
  • Medical-device gateway firmware (IEC 62304)
  • HIPAA-scoped managed operations

  Compliance context

  • IEC 62304
  • FDA 510(k) support
  • HIPAA
  • GDPR