Skip to content

Security

github-actions[bot] edited this page Jun 24, 2026 · 9 revisions

Security Primitives Threats Stars Last Commit

Security Model

The Anticloud ecosystem is built on a foundation of cryptographic verification. Every operation โ€” from browsing to storage to AI inference โ€” is backed by tamper-evident proofs.

Cryptographic Verification Flow

%%{init: { 'theme': 'base', 'themeVariables': { 'primaryColor': '#1d1d1f', 'primaryTextColor': '#fff', 'primaryBorderColor': '#333', 'lineColor': '#0071e3', 'tertiaryColor': '#f5f5f7' } }}%%
sequenceDiagram
    actor User
    participant App as Application (Kathon/Kamelot)
    participant Lib as Libern Crypto Library
    participant Ledger as .aioss Ledger

    User->>App: Perform action
    App->>Lib: Hash content (SHA3-256)
    Lib-->>App: content_hash
    App->>Lib: Sign hash (Ed25519)
    Lib-->>App: signature
    App->>Ledger: Append {content_hash, signature, timestamp}
    Ledger-->>App: ledger_entry_hash
    App->>Ledger: Verify chain integrity
    Ledger-->>App: proof (Merkle inclusion)
    App->>User: Confirmation + verification proof
Loading

Threat Model

%%{init: { 'theme': 'base', 'themeVariables': { 'primaryColor': '#1d1d1f', 'primaryTextColor': '#fff', 'primaryBorderColor': '#333', 'lineColor': '#0071e3', 'tertiaryColor': '#f5f5f7' } }}%%
flowchart TB
    subgraph Threats[Identified Threats]
        NET[Network Eavesdropping]
        SUP[Supply Chain Attack]
        SIDE[Side-Channel Leakage]
        DATA[Data Tampering]
        ID[Identity Spoofing]
        AI[AI Model Poisoning]
        BOOT[Boot Integrity]
        DOS[Denial of Service]
    end
    subgraph Mitigations[Security Mitigations]
        CRYPTO[End-to-end Crypto]
        VERIFY[Signature Verification]
        LEDGER[Tamper-evident Ledger]
        SANDBOX[WASM Sandbox]
        TPM[TPM Attestation]
        AUDIT[Continuous Audit]
    end
    NET --> CRYPTO
    SUP --> VERIFY
    DATA --> LEDGER
    AI --> SANDBOX
    BOOT --> TPM
    ID --> AUDIT
    SIDE --> CRYPTO
    DOS --> SANDBOX
    style Threats fill:#ff3b30,color:#fff
    style Mitigations fill:#34c759,color:#fff
Loading

Threat Analysis

Threat Likelihood Impact Mitigation Status
Network eavesdropping Medium High End-to-end encryption (Ed25519 + Noise protocol) โœ… Implemented
Supply chain attack Low Critical Signed commits + .aioss audit trail + reproducible builds โœ… Implemented
Side-channel leakage Medium Medium Constant-time crypto implementations + timing attack mitigations โœ… Implemented
Data tampering Low Critical SHA3-256 hash chains + Ed25519 signatures on all state โœ… Implemented
Identity spoofing Medium High MFSO multi-factor verification + Shamir secret sharing โœ… Implemented
AI model poisoning Medium High Model signing + WASM sandbox + contradiction detection โœ… Implemented
Boot integrity Medium Critical TPM 2.0 measured boot + .aioss boot attestation โœ… Implemented
Denial of service High Medium WASM sandbox resource limits + rate limiting โš ๏ธ Partial

Cryptographic Primitives

Primitive Standard Usage Projects
SHA3-256 FIPS 202 (Keccak) Content hashing, hash chains Libern, aioss-format, Kathon, Kazcade
Ed25519 RFC 8032 Digital signatures, identity Libern, aioss-format, Kathon, MFSO
BLAKE3 Bao specification Parallel content-addressed hashing Kazcade
TPM 2.0 ISO/IEC 11889 Measured boot, key attestation Sovereign-OS
Shamir Secret Sharing Adi Shamir (1979) Multi-factor key splitting MFSO
ML-DSA FIPS 204 (draft) Post-quantum signatures (planned) Libern (roadmap)

Security Architecture

%%{init: { 'theme': 'base', 'themeVariables': { 'primaryColor': '#1d1d1f', 'primaryTextColor': '#fff', 'primaryBorderColor': '#333', 'lineColor': '#0071e3', 'tertiaryColor': '#f5f5f7' } }}%%
flowchart LR
    subgraph App[Application Layer]
        KATHON[Kathon]
        KAMELOT[Kamelot]
        ANTICODE[Anticode]
    end
    subgraph Auth[Authentication Layer]
        MFSO[MFSO Identity]
        SIG[Ed25519 Signatures]
    end
    subgraph Audit[Audit Layer]
        LEDGER[.aioss Chain]
        VERIFY[Verification API]
    end
    subgraph Hardware[Hardware Layer]
        TPM[TPM 2.0]
        SE[Secure Enclave]
    end
    App --> Auth
    Auth --> Audit
    Audit --> Hardware
Loading

๐Ÿ“– Full docs: Docusaurus Intro ยท Home ยท Architecture ยท Libern ยท aioss-format ยท Protocol-Spec ยท Glossary

๐Ÿ“‹ Main

๐Ÿš€ Projects

๐Ÿ› ๏ธ Tools

๐Ÿ“š Resources

๐Ÿ‘ฅ Community

.====================================================================.
!  Made in the UAE, Dubai #DubaiIt #Dubai #Dxb #SovereignAI          !
!  Made in The Emirates #Dubai_it                                    !
!                                                                    !
!  Lois-Kleinner Alpasan - The Anticloud 2026-                       !
!                                                                    !
!  As seen on:                                                       !
!  Harvard Dataverse ! Zenodo/CERN ! OSF ! DANS ! Figshare           !
!  Academia.edu ! HuggingFace ! ORCID                                !
!  Internet Archive ! anticloud.telepedia.net ! Miraheze             !
!  anticloud.fandom.com                                             !
!                                                                    !
!  0-1.gg ! GitHub ! GitLab ! Codeberg ! GH Pages                    !
!  HuggingFace ! Blog ! Bluesky ! Mastodon                           !
!  LinkedIn ! DEV ! WordPress ! Tumblr                               !
!                                                                    !
!  Sovereign AI ! Local-First ! Privacy ! Zero Trust ! No Datacenter !
!  Air-Gapped ! Open Source ! Rust ! Hash Chain ! Single Binary      !
!  Offline LLM ! Crypto Ledger ! P2P ! Federated                     !
'===================================================================='

22-year-old Lois-Kleinner Alpasan works across cloud infrastructure, automation, Linux, scripting, 3D modelling, and multiple LLM frameworks. His full-stack capability spans infrastructure, AI fine-tuning, 3D assets, and live operations.

References:

  1. Lois-Kleinner Zenodo: https://doi.org/10.5281/zenodo.20781790
  2. Lois-Kleinner GitHub: https://github.com/kleinnner/Anticloud/tree/main/04-aioss-format
  3. Lois-Kleinner Harvard DV: https://doi.org/10.7910/DVN/FDEBAB
  4. Lois-Kleinner Internet Arc: https://archive.org/details/aioss-format
  5. Lois-Kleinner ORCID: https://orcid.org/0009-0009-2233-6107
  6. Lois-Kleinner DEV.to: https://dev.to/kleinner
  7. Lois-Kleinner LinkedIn: https://linkedin.com/in/kleinner
  8. Lois-Kleinner HuggingFace: https://huggingface.co/Anticloud
  9. Lois-Kleinner Tumblr: https://anticloud.tumblr.com
  10. Lois-Kleinner Mastodon: https://mastodon.social/@kleinner
  11. Lois-Kleinner Bluesky: https://bsky.app/profile/kleinner.bsky.social
  12. 0-1.gg: https://0-1.gg
  13. Lois-Kleinner Figshare: https://figshare.com/authors/Lois-Kleinner_Alpasan/20849885
  14. Lois-Kleinner Academia: https://independent.academia.edu/kleinner
  15. Lois-Kleinner Telepedia: https://anticloud.telepedia.net/wiki/Anticloud_by_Lois-Kleinner_Wiki
  16. Lois-Kleinner Fandom: https://anticloud.fandom.com
  17. AIOSS Offline Verification Kit: https://dataverse.harvard.edu/dataset.xhtml?persistentId=doi:10.7910/DVN/OORKNJ

Clone this wiki locally