The most secure IoT encryption.

Teserakt is a Swiss technology company created by leading experts in applied cryptography. Our products and services enable organizations in diverse sectors to use IoT networks while making sure that no one else can read nor tamper with their critical information. We believe that business-sensitive and personal information should have at least the same level of protection as the messages we send on our phones.

E4: IoT security done right

End-to-end encryption and key management software solution for IoT and M2M

More secure than TLS, because messages encrypted with TLS will be decrypted by the relay server, whereas messages encrypted with E4 can only be decrypted by their recipients (end-to-end encryption).

Low-energy and low-bandwidth; E4 runs on the most underpowered platforms thanks to its minimal CPU and memory usage, a negligible per-message overhead, and no

Optimized for MQTT, the most popular IoT and machine-to-machine protocol. E4 is fully compatible with the IoT platforms of AWS, Azure, Google, and IBM.

Seamless integration

  • No change to the broker required
  • Deployment through Docker containers or virtual appliances
  • Thin client library compatible with all platforms (ARM, AVR, Intel, etc.)

End-to-end security

  • All messages encrypted, protected against replay and spoofing
  • Protects against compromised broker servers and infrastructure
  • Safe against quantum computing

Key management

  • Remotely create and manage keys without a complex PKI
  • Deploy key rotation policies using our automation engine
  • Web UI and APIs (HTTP and gRPC)

Defense in depth

  • TLS and mutual authentication between all internal services
  • Database encryption supporting third-party KMS/HSM

State-of-the-art crypto

  • E4 uses primitives such as AES-SIV (RFC 5297), Argon2, SHA-3
  • FIPS mode using only primitives certifiable FIPS 140-2


  • High availability architectures and HAProxy load balancing
  • Full observability thanks to OpenCensus (tracing & metrics)



Teserakt AG was founded in 2018 in Switzerland by noted cryptographer JP Aumasson. Our goal is to establish strong encryption as standard in IoT and machine-to-machine communications, in the same way that it's now an established practice in human-to-human messaging.

We rely on our experience building secure communication software and industrial cryptography systems. Security protocols and algorithms that we designed are now deployed in millions of devices, and some have become international standards.

Advisors and supporters

We are happy to be advised by Emmanuel Odeke, core contributor to the Go language, and to be supported by Innovaud, Innosuisse, PwC Switzerland, and SPEI.


Teserakt partners with the following companies:

  • P3KI, Berlin-based company providing an IoT-friendly trust decentralization solution
  • VerneMQ, Swiss company offering a higly scalable and secure MQTT broker

We also work with EPFL's HexHive lab to extend our offering with firmware security solutions.

Engineering values


Cryptography is our core expertise. We designed algorithms now used in the Linux kernel and Apple devices.

We design secure software. A security product should improve your security posture, not diminish it.


No bells and whistles. We are not ashamed to say that our solution is simple and only supports a handful of parameters.

"Complexity is the enemy of security" is cliché but true.


Be it CPU, memory, or bandwidth, we minimize resources usage thanks to a meticulous choice of algorithms and software components.

Our technology runs on even the most constrained platforms.


  • 2019/06/07 · Teserakt is selected as one of the 3 winners in >>venture>>, the leading Swiss startup competition
  • 2019/05/13 · Teserakt is selected as one of the 10 finalists in >>venture>>, the leading Swiss startup competition
  • 2019/05/08 · We are at InfoShares in Gdańsk, Poland, to give talks about IoT security and post-quantum cryptography
  • 2019/04/03 · Teserakt is awarded PwC's SecTech Award, a prize rewarding the most innovative security start-up in Switzerland
  • 2019/03/27 · We release mqttinfo, a utility to analyze MQTT brokers remotely, which was tested on all open brokers on internet thanks to BinaryEdge
  • 2019/03/08 · We give a talk at the crypto seminar organized by the French Minister of Defense
  • 2019/03/04 · Publication or our report Is MQTT secure?
  • 2019/02/08 · Wired cites us in a piece about Google's new mobile disk encryption technology
  • 2019/01/21 · Our audit of OpenSSL's pseudo-random generator is published by OSTIF
  • 2018/12/02 · We open-source PQGo, our experimental post-quantum library for Go
  • 2018/11/21 · Announcement of our partnership with VerneMQ, provider of an open-source and highly scalable MQTT broker, fully supported by Teserakt's technology
  • 2018/11/19 · Announcement of our partnership with P3KI, provider of a secure access delegation technology that is complementary to Teserakt's technology
  • 2018/11/01 · We contribute an article in the French scientific magazine La Recherche
  • 2018/09/14 · Teserakt AG is registered in Switzerland under UID CHE-414.027.875
  • 2018/09/06 · We open-source SHA3-AVR, our compact version of SHA-3 for AVR chips