Hohmann.

Deploy like it's a cloud. Prove it isn't.

One policy in your repo, one motion — and your app is running sealed in a TEE on a real Acurast phone, on real home broadband. Secrets delivered sealed, logs streaming, front door wired.

Early access The Hohmann plugin is rolling out now. APIs and pricing may change.

Read the docs → Launch in three commands

Already building on Acurast? See how Hohmann fits your stack →

01 — The destination

A deployment target no cloud sells.

Acurast jobs run inside TEEs on real smartphones, parked on residential broadband around the world. Hohmann exists to put your app there — because that topology can prove things no datacenter can.

01 · hardware

Sealed on real silicon

TEE attestation proves exactly what code is running — on a real phone, not a VM that says so.

02 · topology

Parked on home circuits

You can't spin up a home. Real ISPs, real neighborhoods, the true last mile — Acurast has them at fleet scale.

03 · privacy

Nobody can look inside

The seal encrypts everything it touches — memory, keys, traffic. Not the phone's owner, not the network, not us.

What launches here first

Last-mile measurement Provenance-proof data collection Attested webhooks & key custody Verifiable oracles Geo-diverse chain infrastructure Private AI inference

If your app just needs a server, use a server. If it needs to be private, placed, and provable — this is the only ramp.

02 — The problem

A job isn't an app yet.

The destination is extraordinary; the path to it is hostile. Production needs a deployment you can repeat, secrets that arrive sealed, logs you can actually read — and out of the box, each is its own ceremony:

01 · orchestration

A launch is many transactions

Pin the artifact, fund the job, match processors, pass admission — each step its own extrinsic, wallet prompt, and failure mode.

02 · observability

Logs shouldn't break the seal

Your code runs on a phone you'll never meet — you need its logs. But unless they're encrypted end-to-end, to your key alone, your sealed app leaks through its own diagnostics.

03 · secrets

Credentials can't ride in the open

The job needs its API keys at runtime — but nothing outside the enclave should ever see them, now or later. A store that can decrypt them later is a leak on a timer.

03 — The policy

Say what.
Hohmann runs the how.

One JSON file in your repo declares the whole launch — runtime, schedule, secrets, logging, ingress. Hohmann turns it into a plan you can read before a single token moves — and backs it with preflights, replacement holds, and post-mortem diagnosis.

# slipway.json · proof.slipway.application-policy.v3

{

"runtime": { "artifact": "github:acme/api@v1.4.2" },

"schedule": { "replicas": 2, "duration": "30d" },

"secrets": ["STRIPE_KEY", "DATABASE_URL"],

"logging": true,

"ingress": { "implementor": "switchboard",

"switchboard": { "transport": "forward" } },

"acurast": { "minReputation": 0.8 }

}

The plan

acme-api · read it before you pay

ArtifactPinned · encrypted IPFS

Secrets2 grants · sealed

LoggingStream ready · encrypted

IngressQuote signed · Switchboard

BudgetWithin cap · USDC

SpendHeld until --yes-spend

04 — The platform

One policy pulls
nine systems together.

Each piece replaces a manual ceremony with something declared, auditable, and repeatable — what it takes to run TEEs on home internet like production infrastructure. Eight are live today; the ninth is on the slips.

01Live

GitHub-first launches

One commit declares the deployment — reviewable, repeatable, OIDC-pinned. No key files.

02Live

Sealed secrets

Encrypted to the job's enclave before they leave you — no “store now, decrypt later”.

03Live

Live logging

Encrypted end-to-end, from inside the seal to your terminal — readable by you alone.

04Live

Switchboard ingress

A public HTTPS front door — one line of policy.

05Live

Encrypted code

Your bundle is plaintext in exactly two places: your repo and the TEE. Ciphertext everywhere between.

06Live

Launch schedules

Replicas, windows, durations, rolling replacements — declared once, kept on time.

07Live

Dollars in, dollars out

Budgets, quotes, and settlement in USDC — Hohmann does the token dance, your books never see it.

08Live

Spend controls

Caps, preflights, and explicit --yes-spend gates — nothing spends while you're not looking.

09Building

Custom runtimes

Bring a full proot image — your CI builds it, Hohmann serves it straight to the phone.

05 — The seal & the circuit

Private like a vault.
Connected like a neighbor.

The vault never opens; the front door never closes.

The seal

Privacy · hardware TEE

Everything enters. Nothing readable leaves.

The circuit

Position · last mile

Ingress, or egress — all over the world.

Hohmann works the harbor; it never boards a ship. It plans launches, keeps schedules, meters USDC past your spend gates, and moves sealed cargo both ways — holding keys to none of it.

06 — Launch

Three commands to launched.

Install the PROOF CLI, publish your policy, preflight, launch. Artifacts, secrets, logs, and routing are handled for you.

# install the PROOF CLI + Hohmann plugin

$ npm install -g @proof-computer/proof-cli

$ proof plugins install @proof-computer/proof-cli-slipway

# 1 · publish your application policy

$ proof slipway application import --github acme/api --publish

→ policy v3 validated · artifact pinned

# 2 · preflight (budget · secrets · ingress)

$ proof slipway custody preflight acme-api

→ secret grants ready · quote signed · USDC

# 3 · launch

$ proof slipway custody execution run-one acme-api --yes-spend

→ secrets sealed to the enclave

→ logs streaming · encrypted

✓ live · api.acme.ingress.works

Launched

acme-api · application-policy.v3

StatusActive

Runs onAttested phone · home ISP

ArtifactPinned · GitHub OIDC

SecretsSealed to enclave

LogsStreaming · encrypted

Ingressapi.acme.ingress.works