FPGA post-quantum network encryptors, ANSSI-certifiable, deployed transparently over your existing links. Engineered in Rouen, built for European critical infrastructure operators facing NIS2 and ANSSI 2027 deadlines.
Branch offices, datacenters, backbone links — each segment protected by a dedicated encryptor, all managed from a single GARANCE console.
Fiber · Ethernet · 5G · Satellite — every signal encrypted
ML-KEM-1024 + AES-256-GCM hybrid. Resistant to both classical and quantum attacks, following the NIST August 2024 standards and ANSSI January 2025 migration framework.
Encryption happens in the FPGA, not the CPU. 800 Gbps per accelerator with under 5 µs added latency — your network does not notice.
Keys never touch the host CPU — they stay inside the FPGA. Even if the server OS is compromised, the cryptographic material remains out of reach.
Key destruction in under one second. Physical tamper detection or a remote GARANCE command triggers irreversible erasure of all key material.
The control plane is written entirely in Rust — no buffer overflows, no use-after-free. Auditable and verifiable by design.
Architecture designed from the start for ANSSI evaluation. CSPN dossier in preparation, with EAL4+ Common Criteria as the next milestone.
Even this website practices what we preach: the contact form encrypts your message with RSA-4096 + AES-256-GCM in your browser. The transit infrastructure never sees plaintext.
Pick the right form factor for each site — from a 3.4 kg wall-mount box to a multi-terabit chassis. GARANCE manages keys and policies across the fleet.
The same hybrid PQC encryption from a branch in Normandy to a sovereign cloud in Paris — no gaps, no exceptions.
You decide who holds the keys. We support air-gapped, hybrid, or fully managed — depending on your classification level.
France’s 249 vital operators must use ANSSI-certified encryption for their critical systems. No exceptions.
Art. 21 now requires encryption policies for ~150,000 entities across Europe. French transposition (“Loi Résilience”) is underway.
Since January 2025, EU financial entities must document cryptographic resilience — including monitoring for quantum threats.
French government networks require ANSSI-qualified products. No alternatives accepted for classified or restricted systems.
Sensitive cloud workloads require encryption keys under the exclusive control of the operator — not the cloud provider.
From 2027, ANSSI will no longer issue security visas for products without PQC. Full migration expected by 2030 for high-risk use cases.
Whether you need a cryptographic audit, a 4-week POC, or a full rollout — we start where you are.