Industry · Pyinv

Software for critical infrastructure that withstands federal scrutiny.

KRITIS-grade backends, BSI-compliant architecture and secure communication, from a team with deep experience in BSI Common Criteria and TR-03109.

How we help

Critical infrastructure & energy

In critical infrastructure every architecture decision becomes a security question, under government review and with zero tolerance for downtime. We build KRITIS-grade backends, BSI-compliant architecture and secure communication, and support you through to a passed review. The experience comes from the security architecture of a smart meter gateway to BSI Common Criteria and TR-03109, in direct exchange with the BSI.

  • KRITIS-grade backends
  • BSI-compliant architecture (TR)
  • PKI, HSM & secure communication
  • ISMS to BSI requirements
  • Smart metering / gateway systems
  • Audit & certification prep
What you get

Protection-needs & threat analysis

Assessment of criticality, attack surface and requirements as the basis for the architecture.

BSI-compliant architecture (TR)

Secure target architecture to BSI Technical Guidelines, documented and auditable.

PKI, HSM & secure communication

Key management, hardware security modules and encrypted communication.

ISMS to BSI requirements

A management system with policies, roles and evidence for operations.

Smart metering / gateway systems

Experience with gateway architecture and administration in the energy sector.

Certification support

Preparation and support through to a passed government review.

Why Pyinv

Proven, not claimed.

BSI security architecture

Experience with the security architecture of a smart meter gateway to BSI Common Criteria and TR-03109.

Direct exchange with the BSI

Work to BSI TR-03109, including a guided ISO 27001 audit (TÜV Rheinland).

Used to federal rigor

Every line of code under government review, we know that world.

How we work

From idea to audit.

01

Protection-needs analysis

What is critical, and to what degree?

02

BSI-compliant target architecture

Secure, reviewed, documented.

03

Secure implementation

Hardened and traceable.

04

Certification support

Through to a passed review.

Standards & technologies
BSIKRITISCommon CriteriaTR-03109PKI / HSMISMS
FAQ

FAQ

What does KRITIS-grade mean?
Software that meets the security and availability requirements of critical infrastructure and withstands government review.
Do you have BSI experience?
Yes, from the security architecture of a smart meter gateway to BSI Common Criteria and TR-03109, in direct exchange with the BSI.
Which BSI standards do you work to?
BSI Common Criteria and Technical Guidelines such as TR-03109.
Do you build smart-metering systems?
Yes. We have worked on the security architecture of a smart meter gateway and on gateway administration.
Cloud or on-prem for KRITIS?
Usually on-prem or tightly controlled, matching the availability and security requirements.
Do you support certification?
Yes, from the protection-needs analysis to a passed government review.

Building for critical infrastructure?

Let’s talk about your requirements. The intro call is free.

Request a project →