Home Features Solutions Platform Security Contact Request Demo
Architecture

The PhysicalGuard Platform

A modern, layered architecture designed for security, performance, and scalability — from biometric hardware to enterprise applications.

System Architecture

Built in Layers

Each layer of PhysicalGuard is independently secured, tested, and scalable.

Hardware Layer

Fingerprint scanners, iris cameras — native COM interop with zero emulation. Hot-pluggable device detection.

REST API & Core Services

.NET 9 backend with PostgreSQL. AES-256-GCM template encryption, biometric matching, enrollment, user management, audit, AD sync.

Identity Provider

OIDC, SAML 2.0, Kerberos. Biometric-backed token issuance with configurable lifetimes, scopes, and role claims.

Applications & Admin Portal

Next.js admin dashboard, third-party web apps, desktop clients — all authenticated via SSO tokens issued by PhysicalGuard.

Under the Hood

Technology Stack

Enterprise-grade technologies chosen for security, performance, and maintainability.

.NET 9 Backend

High-performance C# REST API with dependency injection, middleware pipeline, and Entity Framework Core.

PostgreSQL

Robust relational database with JSONB support, full-text search, and proven reliability at enterprise scale.

AES-256-GCM

Military-grade authenticated encryption for biometric templates. Zero plaintext storage, ever.

Native C++/COM

Direct hardware interop for fingerprint scanners and iris cameras. No Java bridges, no emulation layers.

Next.js Admin Portal

React 19 dashboard with shadcn/ui components, real-time data, and role-based access control.

SIEM Streaming

Real-time event forwarding to Splunk, Elasticsearch, Syslog, and custom webhooks with retry logic.

Kubernetes-Ready

Containerised deployment with Helm charts, health checks, and horizontal pod autoscaling.

API-First

Every feature exposed via versioned REST endpoints with OpenAPI documentation and rate limiting.

Flexibility

Deployment Options

Deploy PhysicalGuard the way your organisation requires — on-premises, hybrid, or cloud.

On-Premises

Full deployment on your own infrastructure. Air-gapped networks supported. Complete data sovereignty.

Hybrid

Biometric hardware on-prem with cloud-hosted API and admin portal. Best of both worlds.

Cloud

Fully managed in your cloud provider (Azure, AWS, GCP). Auto-scaling, managed databases, zero ops.

Developer Experience

API-First by Design

Every capability in PhysicalGuard is exposed through versioned REST endpoints with comprehensive OpenAPI documentation. Build custom integrations, automate workflows, and extend the platform to fit your needs.

  • OpenAPI 3.0 specification with Swagger UI
  • Versioned endpoints (v1, v2) for backward compatibility
  • Rate limiting and per-client throttling
  • Webhook support for event-driven architectures
GET /api/v1/users POST /api/v1/enrollment/enroll POST /api/v1/auth/verify GET /api/v1/audit/logs PUT /api/v1/settings GET /api/v1/sso/clients 200 OK { "data": [...], "total": 247 }

See the Platform in Action

Request a technical deep-dive with our engineering team. We'll walk you through the architecture, deployment options, and integration paths.

Request a Demo Security Details