SberTech and AT Consulting Launch a Solution for Secure Secret Management

Reducing Exposure to Foreign Systems

IT company AT Consulting, part of Rosatom, and SberTech have confirmed compatibility between the Secrets Management Module of CUP 2.0 and Platform V’s Pangolin DB and SberLinux OS Server.

During testing, the systems successfully executed key confidentiality operations, including creating, updating, and destroying encryption keys. Both the secrets‑management module and the database/OS stack are listed in Russia’s national software registry and certified by the Federal Service for Technical and Export Control (FSTEC) at Trust Level 4.

The announcement marks a notable shift for Russia’s cybersecurity market. Compatibility among fully domestic components reduces dependence on foreign DBMSs and operating systems, enhances resilience for critical systems, and strengthens the protection of citizens’ personal data.

Building a Domestic Security Stack

The integrated solution—Pangolin DB, SberLinux OS Server, and the Secrets Management Module—has export potential and may appeal to countries seeking diversified or non‑Western IT suppliers. Within Russia, the stack can support government agencies, critical information infrastructure (CII), and sectors such as banking, telecommunications, and energy.

“Today, the most important capabilities extend beyond basic traffic filtering—the traditional backbone of network security products. The focus is shifting toward integration with broader infrastructure and toward advanced security mechanisms such as behavioral analytics and Threat Intelligence indicators.”

Dmitry Lebedev

lead specialist at Security Code

The certification and alignment of these components help establish a domestic ecosystem of trusted technologies while reducing risks tied to sanctions or the discontinuation of foreign products. Challenges remain, including competition with global market leaders and the need for long‑term ecosystem development and global recognition.

Security Technology Gains Momentum

As of August 2025, 46 percent of Russian organizations have fully transitioned to domestic network‑security tools, with another 14 percent planning to do so by year’s end. Twenty‑eight percent intend to migrate over the next few years, while only 12 percent have no plans to switch.

Russia’s software‑hardware security market is expanding rapidly. By 2024, the number of registered products reached 470, driven by aging infrastructure and efforts to achieve import independence. The market is shifting toward routing, switching, and industrial‑control solutions aligned with national priorities.

Between 2022 and 2023, adoption of domestic operating systems (such as Astra Linux and Red OS) and database systems (Postgres Pro, Libra) accelerated. In 2025, Gazinformservice released updated Jatoba DBMS versions 6.10.1, 5.14.1, and 4.19.1, offering improved cluster management, security‑event logging, horizontal scaling, full‑text search, archiving, and monitoring. The next release will be based on PostgreSQL 18, promising further performance gains.

These trends illustrate a systemic effort to reinforce security capabilities and expand Russia’s pool of certified, locally supported technologies.

Export Prospects and Ecosystem Growth

Analysts expect rapid growth over the next two to three years in certified domestic solutions designed for large‑scale and critical‑infrastructure deployments. Integrated stacks—combining OS, DBMS, and secrets‑management modules—are likely to become more common as compatibility testing expands.

Export opportunities may develop in CIS countries, BRICS members, and emerging markets. Success will depend on usability, support quality, interoperability, and competitive pricing. Strengthening Russia’s technological sovereignty is reshaping the domestic IT market and driving increased localization and certification of security technologies.