Knowledge Base
All Articles
Technical guides, security architecture deep dives, and compliance documentation.
Carving Out a CUI Enclave on Your Existing Filesystem
·June 24, 2026·8 min read
A technical guide to partitioning shared storage for tiCrypt while maintaining CMMC Level 2 compliance. Covers filesystem requirements, directory structure, permission models, and the CMMC controls that make joint storage acceptable.
SecurityComplianceArchitectureCMMCSatisfying CMMC Level 2 Audit and Accountability Controls with tiCrypt
·June 23, 2026·17 min readA compliance officer's guide to how tiCrypt satisfies the nine CMMC L2 / NIST SP 800-171r2 Audit and Accountability practices, integrates with your SIEM, and where your organization must supplement with its own controls.
SecurityComplianceCMMCSeparating Threat from Hype with Quantum Computing
·June 23, 2026·15 min readA technical analysis of the quantum computing threat to RSA-2048 and what it means for tiCrypt's cryptographic architecture.
SecurityCompliancetiCrypt and libvirt Storage Pools: Network Block Devices (iSCSI, Ceph RBD)
·June 13, 2026·4 min readWhich libvirt storage pool types tiCrypt can use, with specific attention to network and block-device pools such as iSCSI and Ceph RBD.
ArchitectureVirtual MachinestiCrypt's New Look Arrives
·June 13, 2026·2 min readOn June 18, tiCrypt gets its first major visual update in years. Same workflows, same encryption -- just a cleaner, more comfortable interface.
PlatformCryptographic Isolation for CUI on Shared Storage
·June 11, 2026·9 min readWhy physical isolation is not required when cryptography enforces the confidentiality of CUI on shared storage.
SecurityComplianceVM Installer 3.10.42: New Baseline with Admin Access Controls
·June 1, 2026·1 min readThe latest tiCrypt VM Installer introduces SLURM integration, granular admin access controls, and establishes the new baseline for all future VM Controller releases.
Virtual MachinesThe Shared Responsibility Gap in Cloud Research Enclaves
·May 28, 2026·14 min readCloud providers cover infrastructure. They do not cover compliance. A control-by-control look at what universities still own under the shared responsibility model, and how tiCrypt eliminates the gap.
SecurityComplianceThe Research Funding You Cannot Compete For
·May 27, 2026·5 min readUniversities without a secure research enclave are locked out of a growing share of federal grants and contracts. The compliance requirements are here, the funding is real, and the cost of inaction is measurable.
ComplianceRedCap VMs: Adding application secure VM support to tiCrypt
·May 17, 2026·4 min read
How tiCrypt adds application secure VM support to host externally accessible services like REDCap inside secure VMs with controlled network access.
Virtual MachinestiCrypt Functional Architecture
·May 14, 2026·4 min readA walkthrough of the tiCrypt functional diagram, covering how the frontend, backend, compute nodes, and audit system connect and communicate.
ArchitectureSecure HPC Batch Processing with tiCrypt and SLURM
·May 14, 2026·7 min readHow tiCrypt integrates with SLURM to deliver secure, isolated batch processing for high-performance computing workloads in regulated environments.
Virtual MachinesBare-Metal Support: Running tiCrypt+Slurm on Physical Hardware
·May 12, 2026·6 min readThis post explores a new feature for tiCrypt: support for bare-metal nodes in Local Slurm
Virtual MachinesUsage Reporting and Forensics in tiCrypt Audit
·March 26, 2026·9 min readHow tiCrypt's audit system delivers tamper-evident forensics, usage reporting, and CMMC-aligned accountability across every operation in the enclave
PlatformThe New tiCrypt Network Architecture Based on OpenVSwitch
·March 25, 2026·9 min readThe new network architecture uses virtual switches provided by OpenVSwitch
ArchitectureHow tiCrypt Isolates Virtual Machines at the Network Level
·March 19, 2026·5 min readtiCrypt VM Network Overview
SecurityVirtual MachinesUnderstanding tiCrypt Infrastructure: Components, Connectivity, and Deployment Options
·March 11, 2026·3 min readtiCrypt Infrastructure
ArchitectureWhy tiCrypt Uses MFA: But Never Trusts It
·March 2, 2026·4 min readMFA Integration with tiCrypt
SecurityGetting Data Into the Enclave: tiCrypt's Ingress Methods Explained
·February 17, 2026·4 min readMethods to move data into tiCrypt
PlatformInterplay between the filesystem and tiCrypt
·January 9, 2026·5 min readInformation between various filesystems and tiCrypt
Architecture