# EPI: Digital Public Infrastructure for AI Evidence

### **The Problem:** No cryptographic proof of AI decisions.
### **The Protocol:** A standardized evidence container (`.epi`).

---

> **"EPI is a file format and verification protocol. This demo only exists to show how an .epi artifact is produced."**

---

## Protocol Workflow

1. **GENERATE** - Seal execution state into an evidence container.
2. **VERIFY** - Cryptographically validate the artifact (Independent). **(CORE)**
3. **ATTACK** - Attempt to corrupt the binary state (Bit-Flip).
4. **INSPECT** - Read-only forensic analysis.

> **👉 Click: Runtime → Run All**

### A. PROVABLE GENERATION

We simulate a regulated AI Agent. 
Instead of "logging" text, we **seal the state** into a portable evidence container.

In [None]:
# @title Initialize Protocol & Seal State { display-mode: "form" }
import sys, time, re
from pathlib import Path
from IPython.display import clear_output, display, HTML

# 1. Install Protocol Interface
!pip install -q --upgrade pip epi-recorder 2>&1 | grep -v 'already satisfied' || true
!rm -rf *.epi # Clean workspace

clear_output()
print(">> [SYSTEM] EPI Protocol v2.1.1 Initialized")

# 2. Define Agent Logic (Notary Pattern)
agent_code = """
import time
from epi_recorder import record

evidence_file = "SEC_Compliant_Trade.epi"

with record(evidence_file, workflow_name="Algorithmic_Trade_Audit", auto_sign=True) as notary:
    # Alias for semantic clarity (This is NOT logging)
    notary.seal_state = notary.log_step
    
    print(f">> [PROTOCOL] Session started. Sealing state to: {evidence_file}")
    
    # State 1: Ingest
    print(">> [AGENT] Ingesting Market Data...")
    notary.seal_state("STATE_INGEST", {"symbol": "AAPL", "price": 185.43, "timestamp": time.time()})
    time.sleep(0.1)

    # State 2: Logic
    print(">> [AGENT] Computing Indicators...")
    notary.seal_state("STATE_COMPUTE", {"indicator": "SMA_50", "value": 178.21, "signal": "BUY"})
    time.sleep(0.1)

    # State 3: Execution
    print(">> [AGENT] Executing Trade...")
    trade = {"action": "BUY", "qty": 500, "notional": 92715.00}
    notary.seal_state("STATE_COMMIT", trade)
    time.sleep(0.1)
    
    print(f">> [PROTOCOL] Evidence Sealed. Hash generated.")
"""

with open('trading_agent.py', 'w') as f:
    f.write(agent_code)

# 3. Execute Agent
!python trading_agent.py

# 4. Confirm Artifact
epi_files = list(Path('.').glob('*.epi'))
if epi_files:
    f = epi_files[0]
    print("-" * 50)
    print(f"ARTIFACT GENERATED: {f.name}")
    print(f"SIZE: {f.stat().st_size} bytes")
    print("-" * 50)

### B. INDEPENDENT VERIFICATION

**This is the core of the infrastructure.**
The `.epi` file exists independently of the system that created it.
We verify the **mathematics**, not the dashboard.

In [None]:
# @title Cryptographic Audit (Offline) { display-mode: "form" }
target_file = "SEC_Compliant_Trade.epi"

if Path(target_file).exists():
    print(f"Auditing Artifact: {target_file}")
    print("-" * 50)
    !epi verify {target_file}
    print("-" * 50)
    
    # Clean, serious success message (No emojis)
    print(">> STATUS: [VALID] Ed25519 Signature Confirmed.")
    
    # Download Option - Emphasizing Ownership
    from google.colab import files
    try:
        files.download(target_file)
        print("\n[SYSTEM] Artifact downloaded to local machine for independent verification.")
    except:
        pass

### C. BINARY INTEGRITY TEST (Bit-Flip)

Malicious actors may try to alter the binary state of the evidence.
We simulate a **Deep Binary Corruption** (Bit-Flip) by modifying bytes directly on the file system.

In [None]:
# @title Execute Security Stress Test { display-mode: "form" }
import shutil

# 1. Create a Forgery
forgery = Path("CORRUPTED_EVIDENCE.epi")
shutil.copy(target_file, forgery)

# 2. Corrupt the Binary Stream (Bit-Flip)
with open(forgery, 'r+b') as f:
    f.seek(int(f.seek(0, 2) / 2)) # Go to middle of file
    f.write(b'\x00\xFF\xFF\x00')  # Inject corruption

print(f">> [ATTACK] Corrupting binary data in {forgery.name}...")
print(f">> [PROTOCOL] verifying integrity...")
print("-" * 50)

# 3. The Protocol Defense
!epi verify {forgery}

print("-" * 50)
forgery.unlink()

print(">> STATUS: [REJECTED] Protocol detected binary alteration.")

### D. EVIDENCE INSPECTOR (Read-Only)

The `.epi` container includes a standardized viewer for forensic audit.

In [None]:
# @title Launch Inspector { display-mode: "form" }
import zipfile, json, html, re
target_file = "SEC_Compliant_Trade.epi"

if Path(target_file).exists():
    print(f"Opening inspector for: {target_file}...")
    try:
        with zipfile.ZipFile(target_file, 'r') as z:
            # 1. Primary Viewer (Rich UI)
            if 'viewer.html' in z.namelist():
                manifest = json.loads(z.read('manifest.json').decode('utf-8'))
                viewer_html = z.read('viewer.html').decode('utf-8')
                steps = [json.loads(l) for l in z.read('steps.jsonl').decode('utf-8').split('\n') if l]
                
                # Injection
                data = json.dumps({"manifest": manifest, "steps": steps})
                viewer_html = re.sub(r'<script id="epi-data" type="application/json">.*?</script>', 
                                   f'<script id="epi-data" type="application/json">{data}</script>', 
                                   viewer_html, flags=re.DOTALL)
                
                display(HTML(f'<iframe srcdoc="{html.escape(viewer_html)}" width="100%" height="600" style="border:1px solid #e5e7eb; border-radius:8px;"></iframe>'))
            
            # 2. Emergency Fallback (Basic UI)
            else:
                print("Standard viewer not detected. Displaying forensic log.")
                # Simple text fallback (Infrastructure style)
                steps = [json.loads(l) for l in z.read('steps.jsonl').decode('utf-8').split('\n') if l]
                print(json.dumps(steps, indent=2))

    except Exception as e:
        print(f"Error loading inspector: {e}")

### E. MARKET CONTEXT

| Metric | Value |
| :--- | :--- |
| **Market (TAM)** | $160B+ (AI Compliance & Governance) |
| **Timing** | EU AI Act, SEC 17a-4, Algorithmic Disgorgement |
| **Moat** | Network Effects + Cryptographic Standard |

#### Traction

*   **Live on PyPI:** 2,000+ Downloads
*   **Open Source:** MIT Licensed
*   **Production:** v2.1.1 Stable

#### Use Cases

1.  **Financial Services:** Algorithmic Trading compliance.
2.  **Healthcare:** HIPAA-grade AI diagnostics trails.
3.  **Insurance:** Automated claim adjudication proof.