#RBAC

May 26, 2026 · Engineering

Time-bound privileged access — building the PCSE §1.4 PAM analog in Go

Request → N-eyes approve → window-of-time → automatic expiry, with every transition written to a hash-chained audit log. The package that closes Gap #1 from the PCSE map.

SecurityGoAuditPAMRBAC

Apr 29, 2026 · Engineering

P2P lending — KYC/AML, three credit bureaus, and the maker-checker RBAC governance that kept fraud rates low

Borrower onboarding is the most fraud-prone moment in a P2P platform. The shape that worked: deterministic KYC, parallel bureau pulls with fallback, real-time fraud signals, and a maker-checker approval for every disbursement.

KYCAMLLendingFraudRBAC