Services — Available Now
Two regulatory clocks are running: classical cryptography sunsets September 21, 2026, and EU AI Act energy disclosure begins August 2, 2026. These engagements exist because the deadlines are real and most organizations are not ready.
FIPS 140-3 classical sunset: September 21, 2026
Post-Quantum Cryptography Migration
Classical cryptography (RSA, ECDH, ECDSA) sunsets under FIPS 140-3 in September 2026. We inventory your cryptographic surface, design the ML-KEM (FIPS 203) + ML-DSA (FIPS 204) migration path, and build cryptographic agility in — so the next algorithm transition is a configuration change, not a redesign.
- — Cryptographic inventory & risk map
- — Migration architecture (ML-KEM + ML-DSA)
- — Agility layer — swap algorithms without protocol redesign
EU AI Act GPAI enforcement: August 2, 2026
AI Energy Disclosure & Attestation
The EU AI Act requires general-purpose AI providers to disclose training and inference energy. Most organizations cannot measure it. We deploy a working attestation pipeline that measures energy per workload and per token, and signs the records at the source — machine-verifiable, independently auditable.
- — Per-workload / per-token energy measurement
- — Machine-signed attestation records
- — Regulator-ready disclosure documentation
Provenance is becoming table stakes
Content Provenance & Integrity
C2PA-based content provenance for organizations that need to prove where their content, data, and model outputs came from. Signed provenance chains from capture to publication, built on post-quantum-ready signatures.
- — C2PA provenance integration
- — Signed content chains, capture to publication
- — PQ-ready signature infrastructure
Fixed-fee engagements with a performance royalty tail. Covenant terms in every contract — systems optimized for the people receiving them, structurally.
Start a conversation →