Fueled by Enjin Matrixchain

LOCKS
REDEFINED.

The ultimate C++ framework for decentralized physical access. Secure your assets via EEPROM Binding and Enjin Matrixchain validation.

Request Pilot Access Technical Specs GitHub
OCU
Application Domains

Critical Security
Integrations.

CCTV & Surveillance

Encrypted on-chain authorization for surveillance network access and hardware-level camera activation management.

Standard License

Safes & Vaults

Hardware unlocking for high-value storage. Residential and SMB grade with standard license. Bank vaults require Enterprise.

Standard — SMBEnterprise — Bank Vaults

Luxury Automotive

Immutable digital keys for high-end vehicles. Secure ownership transfer and tamper-proof ignition systems via relay binding.

Standard License

Electronic Doors

Homes, offices, hotels. Real-time credential management without central database risks. Whitelist with temporal constraints.

Standard License

Banking & ATMs

On-chain identity verification for terminals. Single installations use standard licensing. ATM networks and bank infrastructure require Enterprise.

Standard — Single TerminalEnterprise — Networks

Hospitality

The C++ Core authorizes wallet addresses directly on hardware. Access revoked within milliseconds when rental timestamp expires.

Standard — BoutiqueEnterprise — Chains 50+
Standard — $5/deviceSingle site · under 50 access points · no certification required
EnterpriseScale 50+ · critical infrastructure · certification required
Security Architecture

Triple-Lock
Protocol.

Hardware NFT Key

A non-clonable cryptographic key tethered to the device. This Master NFT acts as root of trust, allowing you to authorize or revoke permissions for auxiliary wallets with hardware-level governance.

Removable EEPROM

The removable EEPROM hosts the NFT ID and acts as a physical lock. If a private key is compromised, trigger a Kill Switch — rendering stolen keys useless instantly.

MatrixChain Native

The firmware communicates directly with Enjin MatrixChain. Blockchain and cryptography validate signatures and ownership with zero intermediaries — pure trustless execution.

Security Model

Trustless
By Design.

The OCU Server is a courier — not an authority. It verifies your license and relays the signed payload. It cannot open a door. It cannot authorize access.

The entire chain of trust lives on the device: sr25519 signature verification, NFT ownership check via Enjin RPC, whitelist enforcement — all inside the C++ Core, behind the .so boundary.

Even if the OCU Server is compromised, shut down, or sold — no door opens.
This property holds as long as the integrator implements the Core correctly and does not introduce backdoors in the firmware.

Vendor backdoorArchitecture prevents it
Server compromise = door openNo
Ownership audit trailOn-chain · immutable
RevocationNFT transfer
Access logLocal · owner controlled
Trust requiredChain only
Technical Specs

CoreSDK
v1.2.3

Stack

Core LanguageC++17
Cryptographysr25519 + AES-256-CBC
BlockchainEnjin Matrixchain
HTTP Clientcpp-httplib (internal)
WalletFlutter + C++ + Rust
StorageAES vault · no SQL

Build Targets

ProductionLinux ARM64 · .so
DevelopmentWindows x86-64 · .dll

Key Features

Encrypted whitelist with temporal constraints and recurring schedules
Runtime route modes — NORMAL / OPEN / LOCKED — with auto-revert timer
Emergency PIN offline access with progressive lockout (cap 240 min)
Removable EEPROM as hardware kill switch — NFT transfer = instant revocation
Atomic vault writes with disk space verification — no partial state corruption
Proprietary wallet app — no third-party signing dependencies

Integration

// Single header public API
#include "CoreSDK.h"

// Register access point
Core_RegisterRoute("relay",
  CORE_ROLE_GUEST, "DOOR-1",
  nullptr, true);

// Bind GPIO relay
Core_RegisterCommand("relay", 18, 2000);
View on GitHub — ocu-sdk-test
Mobile Signing App

OCU
KeyStore.

OCU KeyStore is the dedicated signing wallet for the On-Chain-Unlock ecosystem. Authenticate with physical access points via QR code, NFC tag, or deep link — no browser, no third-party apps.

sr25519 signing — Substrate compatible
Multiple identities — independent key derivation
Biometric unlock — fingerprint & face ID
NFC tag reading — tap to authenticate
Deep link support — ocu:// scheme
Enjin NFT portfolio — on-chain ownership display
Argon2 key derivation — encrypted local vault

Security Note: The private key never leaves the device. All signing operations happen locally in the Rust cryptographic layer. The server only receives the signature — never the key.

Android APK

Direct Install — Sideload Required

Package Info

PlatformAndroid 9.0+
ArchARMv8 (64-bit)
Version1.0.0
AlgorithmSHA-512

Integrity Hash

A3C763CD6A35EFF7D3C95FF0ABCED962BBEE7C0CF7CFB8097E5AA9B9E96108960F53C2220A02C582EE24AC94C5321FEF23CACED6CD28BED01585423078C3EE79

Download OCU KeyStore

Enable "Install from unknown sources" in Android settings before installing

iOS version coming soon. Verify the hash before installing.

System Roadmap

Scaling to Institutional Grade.

Q2 2026 Active

Pilot Phase & B2B Launch

Early Adopter Pack release. First integrations with hardware manufacturers. Standard license available. EEPROM binding support included.

Q3 2026

Enterprise Foundation

Start of Enterprise tier development. Dedicated server licensing, recursive multi-level access control, and architecture designed for large-scale certified deployments.

Q4 2026

Enterprise & Multisig

Enterprise license program. Institutional vault security with M-of-N on-chain multisig — physical access requiring multiple verified signatories.

Crowdfunding Phase 1.0

Hardware
Stress-Test.

Support the On-Chain-Unlock Framework. 500,000 test licenses at founding price for early adopters building the future of physical security.

Early Adopter Quota

500,000 Founding Licenses

Active Slots

Projected Cost:

$5.00/unit

Partner Pack Price:

$0.50/unit

Pilot Phase Open

Partner Pack

Secure Hardware Priority Access

$50.00 Founding Price

Includes 100 Perpetual Licenses · Value $500

Direct R&D Feedback Channel
100x Perpetual Device Licenses
C++ CoreSDK Access + Full Documentation
EEPROM binding support
Purchase Partner Pack

License Scope: Standard licensing covers single-site, non-certified installations under 50 access points. ATM networks, bank vaults, critical infrastructure, or chains of 50+ devices require an Enterprise License Agreement.

Industrial Inquiry

Ready to Integrate?

Scalable C++ SDK for hardware manufacturers. Get technical documentation and bulk licensing details.

Direct Technical Support

Average response time: < 48 Hours

Contact Team