PRIVATE.ME PLATFORM

xWatt: Solar Inverter & DER Grid Security

Secure solar inverters and distributed energy resources with xBoot firmware integrity, xLink M2M authentication, and threshold authorization for grid commands.

Infrastructure COMING SOON XorIDA Powered

Section 01

The Problem

Solar inverters and DER controllers have 46+ known CVEs and minimal security. A coordinated attack on inverters could destabilize the power grid.

The Department of Energy warns that internet-connected solar inverters are a critical infrastructure vulnerability. Researchers have demonstrated that compromising enough inverters simultaneously could cause grid instability or blackouts.

Current inverter firmware ships unsigned. Remote management protocols use shared credentials. There are zero established security frameworks specific to DER devices.

The Old Way

Section 02

The PRIVATE.ME Solution

xWatt secures DER devices with xBoot firmware integrity (triple verification), xLink DID authentication (per-device identity), and threshold authorization for grid control commands.

Every inverter and DER controller receives a unique DID identity via xLink. Firmware updates are delivered via xBoot: XorIDA-split at deploy, reconstructed in memory, triple-verified (HMAC + Ed25519 manifest + per-file SHA-256).

Grid control commands require threshold authorization: K-of-N utility operators must approve before any command executes. This prevents a single compromised operator from issuing destabilizing commands.

The New Way

Section 03

How It Works

xWatt combines xBoot (firmware integrity), xLink (device identity), and threshold authorization (grid command approval) into a comprehensive DER security layer.

Key Security Properties

Every device has a unique DID. Firmware is xBoot triple-verified. Grid commands require threshold approval. No single compromise can destabilize the grid.

Section 04

Use Cases

☀️

Solar

Inverter Security

Secure solar inverters with per-device identity and verified firmware.

Solar

⚡

Utilities

Grid Command Auth

Threshold authorization for DER grid control commands.

Grid

🔒

Security

Firmware Integrity

xBoot triple-verified firmware updates for DER devices.

Firmware

🏭

Infrastructure

SCADA Integration

DID-authenticated SCADA communication for distributed energy resources.

SCADA

Section 05

Integration

Quick Start

import { DERGuard } from '@private.me/gridsplit';

const guard = await DERGuard.create({
  deviceDid: inverterDid,
  gridOperators: [opA, opB, opC],
  commandThreshold: { k: 2, n: 3 }
});

DERGuard.create(opts): Promise<Result<DERGuard, GridError>>

Creates a DER security guard with per-device DID identity, xBoot firmware verification, and threshold-authorized grid commands.

Section 06

Security Properties

Property	Mechanism	Guarantee
Device identity	DID per-inverter	✓ Ed25519 unique
Firmware	xBoot triple verify	✓ HMAC + Ed25519 + SHA-256
Commands	Threshold K-of-N	✓ Multi-operator approval
Communication	xLink M2M	✓ Encrypted authenticated

$52B

Grid security TAM

46+

Known CVEs

xBoot

Triple verify

VERIFIED BY XPROVE

Verifiable Data Protection

Every operation in this ACI produces a verifiable audit trail via xProve. HMAC-chained integrity proofs let auditors confirm that data was split, stored, and reconstructed correctly — without accessing the data itself.

XPROVE AUDIT TRAIL

Every XorIDA split generates HMAC-SHA256 integrity tags. xProve chains these into a tamper-evident audit trail that proves data was handled correctly at every step. Upgrade to zero-knowledge proofs when regulators or counterparties need public verification.

Read the xProve white paper →

GET STARTED

Ready to deploy xWatt?

Talk to Ren, our AI sales engineer, or book a live demo with our team.

Book a Demo

Deployment Options

🌐

SaaS Recommended

Fully managed infrastructure. Call our REST API, we handle scaling, updates, and operations.

Zero infrastructure setup
Automatic updates
99.9% uptime SLA
Enterprise SLA available

View Pricing →

📦

SDK Integration

Embed directly in your application. Runs in your codebase with full programmatic control.

npm install @private.me/xwatt
TypeScript/JavaScript SDK
Full source access
Enterprise support available

Get Started →

🏢

On-Premise Upon Request

Enterprise CLI for compliance, air-gap, or data residency requirements.

Complete data sovereignty
Air-gap capable deployment
Custom SLA + dedicated support
Professional services included

Request Quote →

Enterprise On-Premise Deployment

While xWatt is primarily delivered as SaaS or SDK, we build dedicated on-premise infrastructure for customers with:

Regulatory mandates — HIPAA, SOX, FedRAMP, CMMC requiring self-hosted processing
Air-gapped environments — SCIF, classified networks, offline operations
Data residency requirements — EU GDPR, China data laws, government mandates
Custom integration needs — Embed in proprietary platforms, specialized workflows

Includes: Enterprise CLI, Docker/Kubernetes orchestration, RBAC, audit logging, and dedicated support.

Contact sales for assessment and pricing →

VERIFIABLE WITHOUT CODE EXPOSURE

Ship Proofs, Not Source

xWatt generates cryptographic proofs of correct execution without exposing proprietary algorithms. Verify integrity using zero-knowledge proofs — no source code required.

XPROVE CRYPTOGRAPHIC PROOF

Download proofs:

Tier 1 HMAC (~0.7KB)
Tier 2 Commit-Reveal (~0.5KB)
Tier 3 IT-MAC (~0.3KB)
Tier 4 KKW ZK (~0.4KB)

Verify proofs online →

Use Cases

🏛️

REGULATORY

FDA / SEC Submissions

Prove algorithm correctness for distributed systems without exposing trade secrets or IP.

Zero IP Exposure

🏦

FINANCIAL

Audit Without Access

External auditors verify secure operations without accessing source code or production systems.

FINRA / SOX Compliant

🛡️

DEFENSE

Classified Verification

Security clearance holders verify distributed systems correctness without clearance for source code.

CMMC / NIST Ready

🏢

ENTERPRISE

Procurement Due Diligence

Prove security + correctness during RFP evaluation without NDA or code escrow.

No NDA Required