Cybersecurity for critical infrastructure

Advanced integration to protect your digital assets.

Systems, software and integration services for banking, payment processors and FinTech. Defense in depth built on the principles of the Algiz rune: protection, strength and progress.

Request a demo
Hardware
payShield · Luna · nShield
Security
Encryption locked in hardware
Tokens
PAN, PIN block & track2
algiz · live operations
v4.21.0
CRYPTOGRAPHIC OPERATIONS · LAST 24H
184,729
14:32:08TOKENPAN tokenized · vault-mx-04 · 1,247 ops
14:32:06ISO0200 message · MAC verified · response 00
14:32:02HSMPIN block translated · ZPK→ZMK · 11ms
Trusted by teams across →
Banking
Payment processors
FinTech
Credit unions
Wallets
Government
Components · Algiz Platform

Four products that make up Algiz Platform.

Each piece solves a concrete integration or cryptographic-governance problem and can be adopted on its own. The only thing they share is the HSM as the root of trust — keys never leave it in the clear.

01 — Product

HSM Gateway

REST API over your Thales payShield 10K and Luna HSMs. Forget the proprietary TCP messaging — integrate cryptographic capabilities in minutes, not months.

Standard HTTP/S + JSON API
payShield 10K and Luna supported
Load balancing, queues and high availability
On-prem, cloud-native or hybrid
min ▸ months
Time to integrate
Explore
02 — Product

File Exchange System

Encrypted, auditable transfer between institutions, processors and regulators. PGP, TLS 1.3 and a cryptographically signed log per file.

Symmetric + asymmetric encryption
SFTP, AS2 and S3 connectors
Signed traceability per file
Per-counterparty policies
AES-256
Encryption at rest and in transit
Explore
03 — Product

ATM Keygen

Automates the manual key-generation ceremony for entire ATM fleets on Thales payShield 10k. Zero cryptographic material on screen, numbered envelopes straight to the printer, signed log at closeout.

Air-gapped embedded device · distraction-free TUI
Dual authentication · zero keys or KCV on screen
Numbered envelopes straight to dot-matrix printer
SHA-256 audit log · checklist-driven closeout
Batch
Hundreds of ATMs in a single ceremony
Explore
04 — Product

ISO-8583 Proxy / Balancer

Receives ISO-8583 over native TCP, JSON or SOAP. Delivers ISO-8583 to the switch or core — encrypting, tokenizing and balancing across HSMs and backends in the same hop.

TCP ISO-8583, JSON and SOAP inputs
Per-field encryption / tokenization via HSM
Queues, back-pressure and circuit breakers
Active-active multi-node
3 → 1
Inbound protocols → ISO-8583 out
Explore
The platform

Separate products.
One shared root of trust.

HSM Gateway, SIA, ATM Keygen and ISO-8583 Proxy are four independent products — each solves a concrete problem and is adopted on its own. What unites them is the HSM as the root of trust: keys never leave it in the clear, and every cryptographic operation speaks the same standards.

Independent products
01
Product

HSM Gateway

Unified cryptographic API over your HSMs.

REST · JSON
02
Product

SIA

Encrypted, auditable file exchange.

PGP · TLS 1.3
03
Product

ATM Keygen

Automates the ATM key-generation ceremony.

payShield 10k · batch
04
Product

ISO-8583 Proxy

Transactional proxy with encryption and balancing.

TCP · JSON · SOAP
Shared root of trust
HSM · Thales payShield 10K · Luna · nShield · Cloud HSM
→ On-prem
→ Hybrid
→ Cloud-native
01

Keys never leave the HSM

Every cryptographic operation of the four products runs inside the HSM. Keys never cross the perimeter in the clear.

02

Same standards, different products

TR-31, DUKPT, PKCS#11, PGP, TLS 1.3. Each product speaks the right language for its domain — no reinvented primitives.

03

Adopt one, two or all four

No need to buy the full suite. Each product is integrated and operated separately, based on the problem you have today.

PROFESSIONAL SERVICE

When the products
aren’t enough.

Algiz Platform covers the common banking and payments cases. For everything else there’s our team of security architects — embedded in your project, not drive-by consultants. This isn’t a product: it’s engineering tailored to you.

Service · Custom engineering

Custom secure development

Senior architects working alongside your team, from the threat model through audit close-out. Native HSM integration whenever the case demands it.

12+ years
Average team experience
Learn about the service
· What the engagement includes
Architecture
Threat model, separation of duties and cryptographic design before the first commit.
HSM integration
When the API isn’t enough: native C, Java or PKCS#11 over payShield and Luna.
Code review · pentest
Continuous code review and internal penetration testing before every critical release.
Compliance
Hands-on support through PCI, ISO 27001 or SOC audit close-out — no external surprises.
Why Algiz

Less integration,
more control where it matters.

Our products are designed to reduce what costs the most in banking and payment processors: HSM integration time and PCI auditable surface. No client rewrites, no core changes.

Included by default
  • HTTP/JSON API over payShield and Luna HSMs — no native SDKs in the application.
  • Cryptographically signed audit for every operation.
  • On-premise or cloud-native deployment, active-active high availability.
  • Best practices: PCI-DSS, PCI HSM, ISO 27001, FIPS 140-2 L3.
Weeks
Integration time
→ Not months · HTTP/JSON API over Thales HSMs
Tokenize
Smaller PCI footprint
→ PAN, PIN block and track2 protected before the backend
Zero
Cryptographic keys in the clear
→ Injection and rotation 100% inside the HSM
A / A
High availability by default
→ Persistent queue · circuit breakers · failover
Get started

A 30-minute session
is worth more than ten audits.

We connect you with a senior architect. No pitch, no endless forms. Just your stack and where we see risk.

Book a diagnosticTalk to sales