Lattice Secure Infrastructure Platform

Government, defence, and regulated commercial environments face infrastructure requirements that managed cloud services can't meet. Air-gapped networks with no internet access. Repeatable deployments that produce identical results months apart. Security hardening that goes well beyond defaults. And operational simplicity, because the teams maintaining these systems need a platform they can understand and debug, not a second full-time job.

We built Lattice because we kept hitting this problem across our own delivery work. Kubernetes is the right abstraction for modern workloads, but getting from a bare Kubernetes API endpoint to a production-ready platform in a disconnected environment meant assembling, integrating, and testing a stack of components from scratch every time. Lattice packages that work so it doesn't need repeating.

Lattice is built on K3s (lightweight, fully conformant Kubernetes in a single binary) and extended with a curated set of components that form a tested, coherent whole: Longhorn for distributed block storage that survives node failures, Garage for S3-compatible object storage, Istio for service mesh and mTLS, and the Prometheus, Grafana, Loki, and AlertManager stack for observability. Each component is optional and can be toggled based on project requirements, but the defaults produce a working, secure platform with minimal configuration.

Air-gap capability is a core design consideration, not an afterthought. Lattice supports pre-loaded image bundles, private registry mirrors, and embedded images so that deployments complete without reaching the internet. Helm charts, OS packages, and TLS certificates are all handled offline. The entire dependency graph, not just container images, is accounted for.

Deployment uses Ansible: agentless, idempotent, and readable. Playbooks live in version control, every change is auditable, and the same tooling handles initial deployment, configuration management, and drift correction. No proprietary orchestration framework to learn, no agents to install on target machines, and no external dependencies during execution. Just SSH access to your nodes.

Testing is built in, not bolted on. Lattice includes automated test suites that validate connectivity, functional correctness, and security hardening after every deployment. When you need to demonstrate to an auditor that your platform meets its requirements, you run the tests rather than assembling evidence manually.

The platform is designed for reuse. Layered configuration with sensible defaults means most deployments need only an inventory file. Where requirements diverge, explicit overrides and component toggles keep the number of meaningful configurations manageable. Tagged releases, semantic versioning, and migration guides ensure deployments stay upgradeable rather than becoming legacy the moment they ship.

Lattice's source is available to customers, providing the transparency, auditability, and operational independence that secure environments demand. Customers can inspect exactly what they're deploying, raise meaningful issues, and operate the platform without vendor lock-in.

Lattice underpins our other products, including AICAP, which can be deployed on Lattice in fully air-gapped classified environments. It is also available independently for organisations that need a secure Kubernetes foundation for their own workloads.

Pricing is engagement-based, reflecting the deployment complexity and support requirements of each environment.