Research foundation

LockedX builds on foundational research into computational characteristics that distinguish human behavior from automated systems. The approach prioritizes signals that are difficult to spoof rather than easily observable attributes that attackers can trivially modify. This research informed innovations in polymorphic code obfuscation, privacy-preserving behavioral analysis, and resilient security data pipelines.

According to the company, many of the most effective detection signals are privacy-safe by design. Human interaction with browser environments produces distinctive computational patterns — such as timing variations, performance characteristics and behavioral entropy — that produce rich detection signals without collecting personally identifiable information. This method is positioned as a way to reduce tension between detection accuracy and privacy compliance.

Four integrated research projects

LockedX comprises four complementary systems that address distinct aspects of the bot detection challenge:

lx-poly — Polymorphic obfuscation

lx-poly implements polymorphic obfuscation techniques intended to make client-side protection logic a moving target for reverse-engineering. The system uses a custom bytecode virtual machine to generate algorithmically distinct implementations that maintain identical functionality while presenting different attack surfaces. Research into WebAssembly compilation targets and HTML/CSS polymorphism is intended to raise the computational cost of comprehensive reverse engineering while preserving browser compatibility and performance.

lx-arc — Privacy-first behavioral analysis

lx-arc focuses on computational and interaction signatures rather than personal data collection. Features include advanced proof-of-work analysis, spoof-resistant fingerprinting and fuzzy device clustering to create behavioral profiles that distinguish human users from automated systems without storing personally identifiable information. Multi-dimensional outlier detection adapts to emerging attack patterns while seeking to maintain low false positive rates.

lx-pipe — Reliable telemetry delivery

lx-pipe provides guaranteed-delivery architectures to ensure security telemetry remains available and auditable during infrastructure failures. Custom data processing pipelines integrate with enterprise systems while providing cryptographic audit trails and compliance guarantees, maintaining visibility into security events even if primary monitoring systems experience targeted attacks or outages.

lx-flow — Developer workflow integration

lx-flow integrates security operations into developer workflows via IDE-native tooling and CI/CD integration. Rather than relying on separate security interfaces, the system brings bot detection management into terminal environments and existing SIEM platforms. Integrations with platforms such as Splunk, Datadog and SentinelOne are provided to enable smoother participation of bot detection in broader security operations.

Developer-first philosophy

LockedX is built on the principle that effective security requires engineering teams to understand and control their protection systems. A CLI-only interface provides programmatic access to configuration options, detection thresholds and analytical insights. Comprehensive logging, audit trails and performance metrics enable data-driven optimization of detection accuracy and operational efficiency.

Transparency extends to pricing and business model. LockedX avoids usage-based pricing that could create incentives to under-protect applications, instead focusing on tools and insights that scale with engineering requirements rather than vendor revenue objectives.

Open research and industry collaboration

The techniques underlying LockedX are presented as advances in computational security research. The company plans to publish research findings and collaborate with external security researchers. Polymorphic obfuscation research, privacy-preserving behavioral analysis techniques and resilient data pipeline architectures are cited as contributions that address industry-wide problems.

Getting started

Technical documentation, implementation guides and research papers are available to explain methodologies in detail. The platform is positioned for technically sophisticated teams and provides in-depth information for engineering teams to evaluate suitability for their security architecture.

Closing

LockedX represents a shift toward transparency, technical depth and developer control in bot detection. By offering inspectable algorithms, configurable detection logic and integrations with existing security tooling, the platform aims to give engineering teams a path beyond black-box solutions. More information is available at lockedx.com.

Media Contact
Company Name: LockedX
Contact Person: Sam van Oosterhout
Email: Send Email
Country: Netherlands
Website: https://lockedx.com