Policy Enforcement for
API keys
Add sophisticated control functions to all your APIs, enhancing security and governance. Make sure all API driven transactions are within policy.
Launching FlowOS
Control transactions across all your APIs and wallets with one Master Policy
We’ve made transaction control and enforcement across your entire ecosystem more secure, scalable and flexible
Policy Enforcement for
Crypto & Digital Assets
Rigorous whitelist management, sophisticated approval workflows, immediate transfers and ultimate security. Deliver compliance and governance across multiple wallets, exchange and payment accounts using advanced cryptographic and blockchain security.
Policy Enforcement for
Compliance
Connect to multiple sources of compliance and transaction risk data, and set thresholds for when to allow, when to escalate, and when to block. Make sure transfers always have the data field required by regulation.
Enforce before it leaves, not after. And record every transaction decision alongside the data and policy that governed it so that you are always ready for audit and discovery.
Policy Enforcement for
Programmable Custody
Rules-based transfers and settlements enforced transparently and trustlessly. Pledge and ringfence collateral in wallets without having to move balances. Agree thresholds, and see collateral transfers executed automatically against them. Dramatically reduce credit, settlement and default risk. Eliminate human error.
Build your flow
The Lacero Platform has been designed to offer your business the complete flexibility to choose the level of complexity of your security and access approval process. Pick as many or as few artefacts as you wish, combined with cryptographic key management and Lacero delivers you an unprecedented policy enforcement of that secure-flow on an independent rail.
1.
Lacero Platform
Every service delivered by Lacero has our Platform technology at its heart. From the latest encryption through to the most adaptive and secure key management. We're innovating to make security a business function.
AES 256 Encryption
Policy Creation & Enforcement
Audited Smart Contracts
Ethereum Blockchain
API Operations
Mobile/Desktop Admin Apps
Key Decryption
NIST/FIPS 140-2 Key Management
Biometric Authentication
Dedicated Admin Nodes
2.
Artefacts
A growing set of completely flexible policy artefacts offer you the most comprehensive options to pick how you want to secure and also control the transfer of your digital assets. Written into transparent smart contracts audited to ensure consistency and performant operation, you can have confidence in their quality,. auditability and immutability.
Authentication
Transaction Detail Match
Addresses
KYT Risk Rating
Transaction Whitelisting
Transaction Blacklisting
ML/AI Risk Rating
Limits
Transaction Timelocks
Transaction Value
Transaction Velocity
Geo-Location
Consensus
M of N
Roles
Sequential
Conditional Trees
3.
Enforcement Method
With the latest in key management technology; Lacero provides you with the flexibility to choose how your policy and data management is enforced. Simple decryption all the way to our virtual co-signing capability.
API 'Secret' Keys
Signing Cryptographic Key
MPC Share
Native Co-Signing (On Chain)
4.
Connect, Integrate, Communicate
Whether you’re a mainframe centric business, or a crypto custody provider, Lacero’s policy enforcement platform connects and integrates with your business processes. Add on a secured communication mechanism as additional verification too.
Policy Enforcement
Use Cases
One Master Policy
Connect all your enterprise and exchange wallets under one single policy that also covers your fiat payment rails as well. A Master Control centre to unify controls and reduce operational risk across your growing payments ecosystem. Integrate several compliance data providers to make sure risk flagged transactions are escalated or blocked before they go. Keep records, and automate the growing burden of regulatory compliance.
Fiat Rails
Connect our policy engine to your fiat payment API and make sure that payment instructions have the same strong controls under policy as your crypto. Link and automate payment authorisations across your different rails, enabling programmable settlement protocols that automate your workflows
Custodians
Keep up with rapidly growing compliance and regulatory requirements. Easily integrate the most detailed, configurable policy engine available today to turbocharge your operations teams, add compliance control automation and create immutable records for audit and regulators
Your clients can pre-approve under policy compliance, then strongly authenticate by signing the most secure cryptographic instruction possible. A huge step up from 2FA in security and efficiency.
Exchanges
Reduce operational and compliance risks for all transfers into and out of your environment with the most configurable, compliance oriented platform available. Connect into all warm and cold in-house key management systems, and to external custodians. Ringfence external assets as pledged collateral and allow for trading lines without pre-funding.
Brokers
Tri-party trade matching between buyers, sellers and brokers with a 'consensus confirmation' pre-settlement. Safe Crypto Payment vs Payment enforced instantaneously and simultaneously. Eliminate settlement risk and escrow. Link and automate payment authorisations across your different rails, enabling programmable settlement protocols that automate your workflows.
Access Control
Control any platform-to-platform API with a Policy that precisely controls who can do what, where and when. Transparent, auditable and immutably recorded. A meta-layer to unify your fragmented control environment and unify it to safeguard your business.
Data Security
Put controls around data movements. Before it leaves, not after. Make sure it is in line with policy, procedures and permissions. Prevent mistakes, fraud, theft and breaches of data regulation.
EU Digital Operational Resilience Act (DORA) Compliance
Article 8, section 4(c) and (d)
FI's shall implement policies that limit...access to system resources and data.....and establish a set of policies, procedures and controls that address access privileges and a sound administration thereof…and strong authentication mechanisms, based on relevant standards and dedicated controls systems to prevent access to cryptographic keys