top of page

AlphaRTK: Enterprise-Grade IAM & RTK Network Distribution Portal

An enterprise-grade, zero-trust portal and custom IAM engine engineered to securely manage pre-paid operational time and distribute sensitive RTK network credentials without exposing physical infrastructure.

Project type

Decoupled IAM & Pre-Paid Access Portal

Custom Engineering

Federal-Grade Cryptographic Engine

Core Capability

Secure RTK Network Distribution

Software Architecture

Zero-Trust Serverless Environment

Challenge

AlphaRTK operates a Real-Time Kinematic (RTK) network, providing centimeter-level GPS corrections to physical hardware in the field for precision agriculture and surveying. The client needed a sophisticated portal to monetize this service, manage pre-paid operational time, and distribute highly sensitive NTRIP connection credentials to users. However, directly exposing the core RTK infrastructure to a standard, public-facing web portal posed an unacceptable security risk. We had to ensure the presentation layer was completely decoupled from the data plane, guaranteeing that the physical hardware network remained entirely dark and protected from any front-end vulnerabilities.

They needed a web application that could connect & manage their Django AWS backend, the web application provides users a digital connection for their GPS surveying system. We created and connected the web application to their Django AWS backend and built a user dashboard where users can manage their IP address to connect GPS devices after paying a pricing plan connected to Wix Pay. The web application was built with a robust software architecture based on the MVC paradigm for web programming.

Areas of Expertise

Solution

To mitigate all physical infrastructure risks, we engineered a Zero-Trust decoupled environment powered by a custom Identity and Access Management (IAM) engine built entirely on native Wix Enterprise infrastructure. Bypassing standard platform login systems, we utilized the full power of Node.js to build a proprietary cryptographic architecture at the federal level, leveraging OS-level hardware entropy for session management and out-of-band vaulted peppering. The React-driven portal acts strictly as a secure, tokenized middleman. Through the custom dashboard, users can securely purchase pre-paid network time, monitor their exact remaining time allocations, and seamlessly execute top-ups directly from the interface. Upon authorization, the system queries the MongoDB database to serve dynamic GNSS server credentials and IP routes without ever exposing the underlying physical network. This architecture allows AlphaRTK to confidently scale their pre-paid B2B access model with concurrent, continuous contractor logins and zero security breaches.

They needed a web application that could connect & manage their Django AWS backend, the web application provides users a digital connection for their GPS surveying system. We created and connected the web application to their Django AWS backend and built a user dashboard where users can manage their IP address to connect GPS devices after paying a pricing plan connected to Wix Pay. The web application was built with a robust software architecture based on the MVC paradigm for web programming.
bottom of page