Hardware-backed key management for teams who need fine-grained control over what each key—and each team member—can sign.
A self-custody platform for securing digital assets, combining SSO authentication, FIPS-certified hardware, and the industry’s most sophisticated policy engine.
Lombard secures $2B in BTC with CubeSigner, generating Bitcoin keys programmatically and enforcing Babylon-specific workflows to restrict their usage—like ensuring deposits can only be staked to Babylon. Lombard maintains self-custody using multi-approvals, transaction limits, and timelock policies. To protect their Bitcoin bridges to Ethereum (and other EVM chains), Sui, and Solana, Lombard has chosen Bascule to independently verify that each LBTC mint is 1-to-1 backed by BTC.
“We’re proud to have Cubist enabling our vision of LBTC as a security-first Bitcoin primitive. Having extra protection from CubeSigner and Bascule on top of the Security Consortium helps us rest assured knowing that our protocol is guarded against the most common types of cross-chain bridge hacks.”
Build risk controls directly into your signing process.
Define exactly what a key can sign—block everything else. Start with our pre-built policies, or use our WebAssembly policy engine to express anything as code.
Use multi-party approvals, timelocks, and other governance rules to restrict who can modify policies…and when…and whether changes are allowed at all.
Layer security for high-risk actions by requiring multiple approvers and/or MFA with strong factors like YubiKeys, Passkeys, and Authenticator Apps.
Get an encrypted ciphertext backup when you generate or import a key, and decrypt with a quorum of YubiKeys. Straight from hardware to hardware.
Get enterprise-grade security without enterprise-level pain.
