Built for the edge. Architected for uncompromising resilience. Powering the next generation of global payments.
Authored & maintained
A portfolio of Python, Rust and JavaScript libraries I created and maintain. Open source, free to use, and applied to wholesale payments, cross-border settlement, financial data and quantum-resistant cryptography.
A Python library that automates ISO 20022 pain.001 payment file creation from CSV or SQLite. Built for the global migration from MT/MX to structured messages across SWIFT, SEPA and major schemes.
Learn about pain0014116Apache-2.0last commit 1mo ago
Generate, validate and deliver ISO 20022 pacs.008 FI-to-FI customer credit transfer messages. JSON Schema, XSD validation, IBAN across 75 countries, GDPR/PCI-DSS-compliant PII masking.
Learn about pacs0082Apache-2.0last commit 2mo ago
A finance-grade Python toolkit that turns multi-format bank statements into structured data. Designed for the realities of real-world statement files and the audit demands of regulated environments.
Learn about Bank Statement Parser215Apache-2.0last commit 4w ago
A Rust library implementing secure hash and digest algorithms for password encryption and verification. Designed with a quantum-resistant posture for the post-PQC era of authentication.
Learn about HSH201Apache-2.0last commit 3mo ago
A robust Rust implementation of CRYSTALS-Kyber, the NIST FIPS 203 standard for general-purpose post-quantum encryption. The foundation for quantum-resistant payment authentication.
Learn about KyberLib413last commit 3mo ago
A pure-Rust YAML 1.2 ecosystem. Zero unsafe, 100% spec compliance (406 / 406 official suite), streaming-first serde, lossless CST and JSON-Schema validation. Library + CLI (noyafmt, noyavalidate) + LSP + MCP + WASM bindings.
Learn about noyalib1Apache-2.0last commit 1mo ago
“Quantum computing threatens the cryptographic foundations of financial services. Payments, from real-time to cross-border settlement, rely on protections that quantum computing will eventually render obsolete.”
Emerging Payments Association Asia (EPAA) · September 2025
Industry white paper for the Emerging Payments Association Asia. The structural threat quantum computing poses to payment infrastructure, and the case for coordinated action now.
EPAA · September 2025
Regulators are treating harvest-now-decrypt-later as a credible present risk. This paper outlines the structural threat and the urgent case for coordinated action across wholesale payment rails.
Latest
Recent research and writing on quantum-safe cryptography, ISO 20022 migration and the future of wholesale payments.
KyberLib turns the post-quantum banking migration from policy paper into inspectable Rust — FIPS 203 ML-KEM key encapsulation, hybrid classical-plus-quantum handshakes, no_std compilation for HSMs, crypto-agile abstraction boundaries, and the DORA Article 5 governance evidence boards now need.
CloudCDN is an open-source blueprint for the AI-native edge — a zero-trust MCP gateway with 42 tools, atomic Durable Objects rate limiting, WebAuthn passkeys, signed URLs, SLSA Level 3 provenance, and 3,185 tests at 100% coverage, mapped to DORA, BCBS 239, and Basel III.
A 2026 banking resilience index — combining AI risk, cloud concentration, quantum-safe migration, payment continuity, and critical third-party dependency into one operational-resilience scoreboard the board and supervisor can both read.
A 2026 autonomous treasury readiness index — measuring agentic treasury workflows, programmable liquidity coverage, tokenised deposit integration, real-time payment orchestration, and automated cash control as one operating-model fabric.
An index framework for measuring wholesale-payments readiness in 2026: ISO 20022 structured-address compliance ahead of SWIFT's November 2026 milestone, tokenised-deposit settlement, BIS Project Agorá cross-border atomicity, real-time rail orchestration, and liquidity efficiency. Four percentages — structured-data completeness, rail-routing optimality, settlement-finality lag, and Agorá-corridor coverage — turn payment-operations posture into supervisory-ready evidence.
An engineering blueprint for cloud-native banking in DORA audit phase. Five platform-engineering primitives — Kubernetes paved roads, Backstage portal, GitOps via ArgoCD, Open Policy Agent admission, OpenTelemetry end-to-end — produce Article 8 register evidence at the speed of the pipeline. Tested exit-execution annually for CTPP-dependent CIFs against BIA-derived RTO targets. Sovereign-cloud options (AWS European Sovereign Cloud, Microsoft EU Data Boundary, Bleu, Thales / S3NS) addressed as engineering decisions, not branding.
Experience
From global Tier-1 banks to consumer technology. Payments and digital product leadership across HSBC, PayPal, Barclays, Shazam, AKQA and Virgin Group.
