RESOURCES

Practitioner-grade playbooks for regulated industries.

Compliance checklists, procurement templates, and regulatory mappings — written by the specialists who deploy them. Bilingual ID + EN.

BROWSE THE LIBRARY

Resources we're preparing for launch

We're starting with one cornerstone checklist for banking digital signature procurement. More resources land as we publish them.

RESOURCES · INDUSTRY BRIEF

YubiKey for Banking & FSI

A two-page brief: the three pressures banks face (weak SMS OTP, IT-compliance pressure, account takeover), the FIDO2 solution, where it applies, and the POJK 11/2022 & PADK 1/2026 compliance hooks.

PDF · 2 pages · Bahasa IndonesiaDownload the brief (PDF) →

RESOURCES · BUYER’S GUIDE

YubiKey Buyer’s Guide

A YubiKey series matrix (5 Series, Security Key, Bio, FIPS) with protocols & form factors, plus a decision flowchart to match the key to your security, systems, and device-fleet needs.

PDF · 4 pages · Bahasa IndonesiaDownload the guide (PDF) →

RESOURCES · COMPARISON GUIDE

A concise comparison guide: why SMS OTP is now a weak point (real-time phishing, SIM-swap, interception) and how FIDO2 (YubiKey) closes it — with the POJK 11/2022, FIPS 140-3, and AAL3 compliance angle.

PDF · 5 pages · Bahasa IndonesiaDownload the guide (PDF) →

RESOURCES · MIGRATION CHECKLIST

SMS OTP → FIDO2 Migration Checklist

A practical, phased checklist for moving admin logins and critical-system access off SMS OTP onto phishing-resistant FIDO2 hardware keys — aligned with POJK 11/2022 IT risk-management principles. Covers assessment, pilot, SSO integration, rollout, and audit evidence.

PDF · 2 pages · EN/IDDownload the checklist (PDF) →

RESOURCES · COMPLIANCE CHECKLIST

POJK Banking Checklist

Procurement checklist for digital signature deployment in Indonesian banks — mapped against POJK 11/2022 (IT risk management for commercial banks), POJK 40/2024 (P2P lending), and KOMDIGI PSrE provider requirements. Built with the Tilaka team.

PDF · 6 pages · BilingualComing soon — Q3 2026

MORE COMING

We publish new resources as the regulatory landscape shifts.

Healthcare SatuSehat integration, FIDO2 phishing-resistant procurement guides, and data sanitization compliance kits are next in the pipeline. Subscribe to be notified when each lands.

NEED SOMETHING SPECIFIC?

Tell us what playbook would help your team.

We write resources based on what regulated-industry teams actually ask us. If there's a compliance question or procurement workflow you wish was easier to navigate, we'll consider it for the editorial calendar.

Schedule a discussion View solutions