Products built around a single principle.
Secrets that don't exist can't be stolen. Every Lokblok® product is designed so that private keys, credentials, and identity data are never stored at rest.
The Product Suite
Five products. One architecture.
Each Lokblok product eliminates a different stored-secret attack surface. Together they form a complete zero-trust cryptographic architecture.
Phantom Secrets™
Key management with no keys at rest.
Private keys are reconstructed inside certified hardware only when needed, used for a single cryptographic operation, then destroyed immediately. No stored keys. No shares to steal. No recovery backdoors.
Phantom Gate™
Authentication without stored credentials.
Zero-persistence authentication gateway. Session keys are created inside a Toughkey™ secure element, used for mutual authentication, then immediately destroyed.
Toughkey™
Certified HSM where keys briefly exist.
Lokblok's certified hardware security module. A tamper-resistant secure element that hosts the Phantom Secrets™ runtime, binding identity to hardware and ensuring secrets are only ever reconstructed inside hardware.
ToughID™
Identity attestation, no stored personal data.
Cryptographic identity attestation without stored personal data. Identity is verified once by a trusted provider, resulting in a signed cryptographic token bound to a public key.
Secure Terminal™
Locked-down execution environment.
Zero-trust execution environment. Hardware-enforced access control, whitelisted application environment, zero-trust networking, encrypted distributed storage, and Phantom Secrets™ key integration.
